| Title | Tenda W18E W18E V2.0-V16.01.0.11 Buffer Overflow |
|---|
| Description | In the Tenda-W18E V2.0 device, a buffer overflow vulnerability exists in the SimpleEncryptToBase64 function defined in the libcommonprod.so library. This function is invoked by the httpd process with user-controllable parameters, allowing an attacker to craft a specially designed packet that causes the httpd process to crash, resulting in a denial-of-service (DoS) condition. |
|---|
| Source | ⚠️ https://github.com/ZIKH26/tmp_store_reports/blob/main/tenda-w18e.md |
|---|
| User | ZIKH26 (UID 61938) |
|---|
| Submission | 03/29/2025 09:12 (1 Year ago) |
|---|
| Moderation | 04/03/2025 14:57 (5 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 303157 [Tenda W18E 16.01.0.11 /goform/setModules formSetAccountList Password stack-based overflow] |
|---|
| Points | 19 |
|---|