Submeter #257396: TOTOLINK Router V9.3.5u.6139_B20201216 buffer overflowinformação

TítuloTOTOLINK Router V9.3.5u.6139_B20201216 buffer overflow
DescriçãoTOTOlink N350RT V9.3.5u.6139_B20201216 has post-authentication buffer overflow vulnerability. Due to the lack of length validation by the developer, an attacker can cause a stack overflow by sending excessively long data via POST to http://ip/cgi-bin/cstecgi.cgi?action=login&flag=ie8.Furthermore, this behavior does not require authentication.
Fonte⚠️ https://github.com/jylsec/vuldb/blob/main/TOTOLINK/N350RT/1/README.md
Utilizador
 jylsec (UID 60282)
Submissão23/12/2023 11h09 (há 3 anos)
Moderação30/12/2023 17h42 (7 days later)
EstadoAceite
Entrada VulDB249389 [Totolink N350RT 9.3.5u.6139_B20201216 HTTP POST Request cstecgi.cgi?action=login&flag=ie8 Excesso de tampão]
Pontos19

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!