| 标题 | Tenda W3 V1.0.0.3(2204) Buffer Overflow |
|---|
| 描述 | A stack-based buffer overflow exists in Tenda w3 V1.0.0.3(2204) within formWifiMacFilterGet on /goform/WifiMacFilterGet. The index POST parameter is copied into a stack buffer with no size check. Sending an overlong index triggers stack corruption and process crash, with potential for code execution. The vulnerable path is entered when the handler parses wl_radio and index. |
|---|
| 来源 | ⚠️ https://github.com/Svigo-o/Tenda_vul/tree/main/tenda-w3-formWifiMacFilterGet-index-buffer-overflow |
|---|
| 用户 | Svigo_o (UID 95970) |
|---|
| 提交 | 2026-02-27 15時08分 (1 月前) |
|---|
| 管理 | 2026-03-11 15時02分 (12 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 350410 [Tenda W3 1.0.0.3(2204) POST Parameter /goform/WifiMacFilterGet formWifiMacFilterGet wl_radio 内存损坏] |
|---|
| 积分 | 20 |
|---|