| 제목 | Tenda FH1201 V1.2.0.14(408) Stack-based Buffer Overflow |
|---|
| 설명 | A buffer overflow vulnerability has been identified in the Tenda FH1201 V1.2.0.14(408) router firmware that allows remote attackers to potentially execute arbitrary code or cause denial of service through malformed HTTP requests. The vulnerable code path processes HTTP requests to the /goform/webtypelibrary. When webSiteId is specified with excessive data, the buffer overflow occurs during strcat. |
|---|
| 원천 | ⚠️ https://github.com/z472421519/BinaryAudit/blob/main/PoC/BOF/Tenda_FH1201/webtyplibrary/webtypelibrary.md |
|---|
| 사용자 | z472421519 (UID 91218) |
|---|
| 제출 | 2025. 12. 18. PM 04:59 (6 개월 ago) |
|---|
| 모더레이션 | 2025. 12. 20. PM 01:22 (2 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 337688 [Tenda FH1201/FH1206 1.2.0.8(8155)/1.2.0.14(408) HTTP Request /goform/webtypelibrary strcat webSiteId 메모리 손상] |
|---|
| 포인트들 | 19 |
|---|