Submit #149075: H3C R160 V1004004 was discovered to contain a stack overflow via go parameter at /goForm/aspForminfo

TitleH3C R160 V1004004 was discovered to contain a stack overflow via go parameter at /goForm/aspForm
Description- Product:H3C R160V smart wifi Router - Manufactor:H3C - product information:https://www.h3c.com/cn/Service/Document_Software/Software_Download/Consume_product/Catalog/H3C_Magic_R/R160/ - firmware download:https://www.h3c.com/cn/d_202012/1361139_30005_0.htm The program obtains content via the go parameter, which is then passed to v3 and copied into *goHtmlUrl* without checking the size of v3. As a result, a buffer overflow vulnerability exists.
Source⚠️ https://github.com/xinzhihen06/dxq-cve/blob/main/h3cr160.md
User
 dengxiquan (UID 45363)
Submission04/26/2023 14:46 (3 years ago)
Moderation05/12/2023 10:13 (16 days later)
StatusAccepted
VulDB entry228890 [H3C R160 V1004004 /goForm/aspForm go stack-based overflow]
Points20

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!

n $_SERVER['REMOTE_ADDR'] ?? '0.0.0.0'; } } ?>