Skip to content

Latest commit

 

History

History
23 lines (12 loc) · 931 Bytes

1.md

File metadata and controls

23 lines (12 loc) · 931 Bytes

Tenda AC5 Unauthorized stack overflow vulnerability

1. Affected version:

US_AC5V1.0RTL_V15.03.06.28

2. Firmware download address

资料下载_腾达(Tenda)官方网站

3. Vulnerability details

image

The function "initWebs" contains a stack-based buffer overflow vulnerability. In the function, it reads in a user-provided parameter, and the variable is passed to the function without any length check, which may lead to overflow of the stack-based buffer. As a result, by requesting the page, an attacker can easily execute a denial of service attack or remote code execution with carefully crafted overflow data.

4. Recurring vulnerabilities and POC

Due to legal and policy reasons, we are unable to provide the exploit for this vulnerability at this time.

5. Author

范启航 220579866