| 标题 | TOTOLINK A3002R V1.1.1-B20200824.0128 Stack-based Buffer Overflow |
|---|
| 描述 | We found an stack overflow vulnerability in TOTOLINK router with firmware which was released recently, allows remote attackers to crash the server.In the router's formRoute function, subnet is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the subnet to execute arbitrary code. |
|---|
| 来源 | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/totolink3/vuln_36/36.md |
|---|
| 用户 | pjq123 (UID 86618) |
|---|
| 提交 | 2025-06-19 17時51分 (1 年前) |
|---|
| 管理 | 2025-06-21 08時02分 (2 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 313595 [TOTOLINK A3002R 1.1.1-B20200824.0128 /boafrm/formRoute subnet 内存损坏] |
|---|
| 积分 | 18 |
|---|