Submeter #600733: TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflowinformação

TítuloTOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow
DescriçãoWe found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formDnsv6 function, routername is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the routername to execute arbitrary code.
Fonte⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_40/40.md
Utilizador
 pjq123 (UID 86618)
Submissão19/06/2025 17h53 (há 1 Ano)
Moderação21/06/2025 08h00 (2 days later)
EstadoDuplicado
Entrada VulDB308850 [TOTOLINK A3002R 4.0.0-B20230531.1404 formDnsv6 routername Excesso de tampão]
Pontos0

Interested in the pricing of exploits?

See the underground prices here!