| 标题 | Tenda O3V2 1.0.0.12(3880) Stack-based Buffer Overflow |
|---|
| 描述 | We found an stack overflow vulnerability in Tenda router with firmware which was released recently, allows remote attackers to crash the server.In the router's fromPingResultGet function, destIP is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the destIP to execute arbitrary code. |
|---|
| 来源 | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/Tenda3/vuln_51/51.md |
|---|
| 用户 | pjq123 (UID 86618) |
|---|
| 提交 | 2025-07-04 04時12分 (10 月前) |
|---|
| 管理 | 2025-07-10 09時49分 (6 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 315878 [Tenda O3V2 1.0.0.12(3880) httpd /goform/setPing fromPingResultGet destIP 内存损坏] |
|---|
| 积分 | 18 |
|---|