| 标题 | Linksys RE6500、RE6250、RE6300、RE6350、RE7000、RE9000 RE6500(1.0.013.001) RE6250(1.0.04.001) RE6300(1.2.07.001) RE6350(1.0.04.001) RE7000(1.1.05.003) RE9000(1.0.04.002) Stack-based Buffer Overflow |
|---|
| 描述 | We found an stack overflow vulnerability in Linksys router with firmware which was released recently, allows remote attackers to crash the server.In the router's singlePortForwardAdd function, ruleName、schedule、inboundFilter is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the ruleName、schedule、inboundFilter to execute arbitrary code. |
|---|
| 来源 | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/Linksys/vuln_37/37.md |
|---|
| 用户 | Bond_yes (UID 89043) |
|---|
| 提交 | 2025-08-14 18時25分 (10 月前) |
|---|
| 管理 | 2025-08-26 09時35分 (12 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 321398 [Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 直到 1.2.07.001 singlePortForwardAdd ruleName/schedule/inboundFilter 内存损坏] |
|---|
| 积分 | 19 |
|---|