Gửi #600731: TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflowthông tin

tiêu đềTOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow
Mô tảWe found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formPortFw function, ip_subnet、fw_ip、service_type is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the ip_subnet、fw_ip、service_type to execute arbitrary code.
Nguồn⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_38/38.md
Người dùng
 pjq123 (UID 86618)
Đệ trình19/06/2025 17:52 (cách đây 1 Năm)
Kiểm duyệt21/06/2025 07:59 (2 days later)
Trạng tháiBản sao
Mục VulDB309033 [TOTOLINK A3002R/A3002RU 3.0.0-B20230809.1615 HTTP POST Request /boafrm/formPortFw service_type/ip_subnet tràn bộ đệm]
điểm0

Do you need the next level of professionalism?

Upgrade your account now!