| Title | TOTOLINK A7000R <=V9.1.0u.6115 Stack-based Buffer Overflow |
|---|
| Description | In the firmware binary file cstecgi.cgi, a buffer overflow vulnerability exists in the function setWiFiEasyGuestCfg. The vulnerability occurs because the program does not check the data length of the ssid5g parameter during processing, and later copies it into a fixed-size data type, resulting in a Stack Overflow. |
|---|
| Source | ⚠️ https://github.com/zhuchan770/vulnerability/blob/main/A7000R/setWiFiEasyGuestCfg/ToToLink%20A7000R%20setWiFiEasyGuestCfg%20338996b67c9780b89829d0ea70058788.md |
|---|
| User | DLChen (UID 97003) |
|---|
| Submission | 04/04/2026 19:10 (3 months ago) |
|---|
| Moderation | 04/12/2026 22:49 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 357056 [TOTOLINK A7000R up to 9.1.0u.6115 /cgi-bin/cstecgi.cgi setWiFiEasyGuestCfg ssid5g stack-based overflow] |
|---|
| Points | 19 |
|---|