Submit #798456: Tenda F456 v1.0.0.5 Stack-based Buffer Overflowinfo

TitleTenda F456 v1.0.0.5 Stack-based Buffer Overflow
DescriptionA vulnerability was found in Tenda F456 v1.0.0.5. Affected by this vulnerability is the function fromPptpUserAdd of the file /goform/PPTPDClient of the component httpd. The manipulation of the argument opttype and usernamewith an unknown input leads to a buffer overflow vulnerability.As a result, by requesting the page, an attacker can easily execute a denial of service attack or remote code execution.
Source⚠️ https://github.com/Litengzheng/vuldb_new/blob/main/F456/vul_125/README.md
User
 LtzHuster2 (UID 96397)
Submission04/07/2026 02:02 (20 days ago)
Moderation04/26/2026 03:03 (19 days later)
StatusAccepted
VulDB entry359627 [Tenda F456 1.0.0.5 httpd /goform/PPTPDClient fromPptpUserAdd opttype/usernamewith buffer overflow]
Points20

PreviousOverviewNext

Interested in the pricing of exploits?

See the underground prices here!