| Title | TOTOLINK EX1200L V9.3.5u.6146_B20201023 Buffer Overflow |
|---|
| Description | A stack overflow vulnerability exists in the sub_4231ac(setLanguageCfg) function of program /www/cgi-bin/cstecgi.cgi in EX1200L V9.3.5u.6146_B20201023. The function receives the langType parameter from the user request and splices it into the variable v7 on the stack, causing a stack overflow. |
|---|
| Source | ⚠️ https://github.com/BeaCox/IoT_vuln/tree/main/totolink/EX1200L/setLanguageCfg_bof |
|---|
| User | BeaCox (UID 72670) |
|---|
| Submission | 08/09/2024 10:40 (2 years ago) |
|---|
| Moderation | 08/17/2024 19:09 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 275035 [TOTOLINK EX1200L 9.3.5u.6146_B20201023 /www/cgi-bin/cstecgi.cgi setLanguageCfg langType stack-based overflow] |
|---|
| Points | 18 |
|---|