Submit #270961: Tenda i6 V1.0.0.9(3857) buffer overflowinfo

TitleTenda i6 V1.0.0.9(3857) buffer overflow
DescriptionA vulnerability was found in Tenda i6 V1.0.0.9(3857). Affected by this issue is the function formSetAutoPing of the component httpd. The manipulation of the argument ping1 leads to stack-based buffer overflow. The attack may be launched remotely.
Source⚠️ https://jylsec.notion.site/Tenda-i6-has-stack-buffer-overflow-vulnerability-in-formSetAutoPing-2e009d81eb7e45438565d5ba6794f4e3?pvs=4
User
 jylsec (UID 60282)
Submission01/21/2024 14:22 (2 years ago)
Moderation01/28/2024 16:39 (7 days later)
StatusAccepted
VulDB entry252255 [Tenda i6 1.0.0.9(3857) httpd /goform/setAutoPing formSetAutoPing ping1 stack-based overflow]
Points13

Want to know what is going to be exploited?

We predict KEV entries!