| 标题 | LB-LINK BL-WR9000 V2.4.9 Buffer Overflow |
|---|
| 描述 | The BLINK WR9000 router has a stack overflow vulnerability. The vulnerability exists in the libshare-0.0.26.so shared library, which is called by the /bin/goahead file. The vulnerability occurs in the internal implementation of the router handling specific functions of the wireless network. Because of out-of-bounds reading and memory structure copying without length limitation during development, if an attacker constructs an extremely long malicious configuration string in advance and injects it into it, it will cause the stack space of the underlying Web worker process to be broken through, leading to a crash and denial of service. |
|---|
| 来源 | ⚠️ https://github.com/glkfc/IoT-Vulnerability/blob/main/LB-LINK/LB-LINK_HideSSID%20stack%20overflow_EN.md |
|---|
| 用户 | jfkk (UID 79868) |
|---|
| 提交 | 2026-03-04 08時40分 (2 月前) |
|---|
| 管理 | 2026-03-15 19時41分 (11 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 351150 [LB-LINK BL-WR9000 2.4.9 /goform/get_hidessid_cfg sub_44D844 内存损坏] |
|---|
| 积分 | 20 |
|---|