| 标题 | TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow |
|---|
| 描述 | The T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input.
Attacker can overwrite the saved return address, lead to RCE. |
|---|
| 来源 | ⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md |
|---|
| 用户 | reisen_1943 (UID 76990) |
|---|
| 提交 | 2025-07-18 21時38分 (12 月前) |
|---|
| 管理 | 2025-07-19 21時15分 (24 hours later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp 内存损坏] |
|---|
| 积分 | 17 |
|---|