Submeter #618656: TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflowinformação

TítuloTOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow
DescriçãoThe T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input. Attacker can overwrite the saved return address, lead to RCE.
Fonte⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md
Utilizador
 reisen_1943 (UID 76990)
Submissão18/07/2025 21h38 (há 12 meses)
Moderação19/07/2025 21h15 (24 hours later)
EstadoAceite
Entrada VulDB317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp Excesso de tampão]
Pontos17

Interested in the pricing of exploits?

See the underground prices here!