| 제목 | Tenda AC21 ≤V16.03.08.16 Buffer Overflow |
|---|
| 설명 | A buffer overflow vulnerability was discovered on the latest version of the Tenda AC21 router, V16.03.08.16, where an attacker sent a well-crafted http post packet to the request path /goform/WifiExtraSet, triggering a denial of service attack or even RCE, specifically via the function strcpy(tkip_aes, tkip_aes_1); because there is no bounds check on tkip_aes, causing a stack overflow |
|---|
| 원천 | ⚠️ https://github.com/lin-3-start/lin-cve/blob/main/Tenda%20AC21/Tenda%20AC21%20Buffer%20overflow.md |
|---|
| 사용자 | QMSSDXN (UID 88719) |
|---|
| 제출 | 2025. 09. 17. AM 10:20 (9 개월 ago) |
|---|
| 모더레이션 | 2025. 09. 22. AM 07:10 (5 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 325200 [Tenda AC21 16.03.08.16 /goform/WifiExtraSet sub_45BB10 wpapsk_crypto 메모리 손상] |
|---|
| 포인트들 | 20 |
|---|