| Title | Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 Buffer Overflow |
|---|
| Description | https://github.com/TangcuLiyuu/CVE/issues/1
The problem occurs in the httpd component, where the program calls form_fast_setting_wifi_set to handle requests related to fast_setting_wifi_set.
In the form_fast_setting_wifi_set function, the program first retrieves the ssid parameter using the websGetVar function and stores it in a variable called Var. It then assigns the value of Var to Var_1. Finally, it uses the strcpy function to directly copy the value of Var_1 into the buffer par. Since there is no length limitation on the parameter, an attacker can construct an overly long parameter to trigger a buffer overflow vulnerability, resulting in device crashes. |
|---|
| Source | ⚠️ https://github.com/TangcuLiyuu/CVE/issues/1 |
|---|
| User | yangwang (UID 88687) |
|---|
| Submission | 08/04/2025 10:58 (10 months ago) |
|---|
| Moderation | 08/13/2025 18:11 (9 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 319927 [Tenda TX3 16.03.13.11_multi_TDE01 fast_setting_wifi_set ssid stack-based overflow] |
|---|
| Points | 20 |
|---|