Submit #626689: Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflowinfo

TitleLinksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflow
DescriptionWe found an stack overflow vulnerability in Linksys router with firmware which was released recently, allows remote attackers to crash the server.In the router's setRIP function, RIPmode、RIPpasswd is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the RIPmode、RIPpasswd to execute arbitrary code.
Source⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys1/vuln_40/40.md
User
 pjq123 (UID 86618)
Submission08/01/2025 04:34 (9 months ago)
Moderation08/10/2025 10:06 (9 days later)
StatusAccepted
VulDB entry319358 [Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 up to 20250801 /goform/setRIP RIPmode/RIPpasswd stack-based overflow]
Points18

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!