提交 #618656: TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow信息

标题TOTOLINK T6 V4.1.5cu.748_B20211015 Buffer Overflow
描述The T6 routers open MQTT service and listen on port 1883. In function updateWifiInfo. The v9 buffer is 128 bytes, and the sprintf doesn't check for the length of input. Attacker can overwrite the saved return address, lead to RCE.
来源⚠️ https://github.com/AnduinBrian/Public/blob/main/Totolink%20T6/Vuln/7.md
用户
 reisen_1943 (UID 76990)
提交2025-07-18 21時38分 (12 月前)
管理2025-07-19 21時15分 (24 hours later)
状态已接受
VulDB条目317028 [TOTOLINK T6 4.1.5cu.748_B20211015 MQTT Service updateWifiInfo serverIp 内存损坏]
积分17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!