| 标题 | Shenzhen Tenda Technology Co., Ltd. Tenda AC10 v16.03.10.20 Firmware Tenda AC10 v16.03.10.20 Stack-based Buffer Overflow |
|---|
| 描述 | The fromSetRouteStatic function in Tenda AC10 v4.0 V16.03.10.20 firmware contains a stack overflow vulnerability. The vulnerability arises because the save_staticroute_data function does not impose effective restrictions on the length of the list parameter provided by the user. An attacker can exploit this issue by constructing an overly long string, which may trigger a stack overflow and potentially lead to arbitrary code execution or device crash. |
|---|
| 来源 | ⚠️ https://github.com/alc9700jmo/CVE/issues/17 |
|---|
| 用户 | alc9700 (UID 79368) |
|---|
| 提交 | 2025-09-21 12時39分 (7 月前) |
|---|
| 管理 | 2025-09-26 14時02分 (5 days later) |
|---|
| 状态 | 重复 |
|---|
| VulDB条目 | 257081 [Tenda AC10 16.03.10.13 SetStaticRouteCfg fromSetRouteStatic list 内存损坏] |
|---|
| 积分 | 0 |
|---|