- Firmware download website: https://www.tenda.com.cn/download/detail-2227.html
4G300 V1.01.42
The Tenda 4G300 V1.01.42 firmware has a stack overflow vulnerability in the sub_4260F0
function. The v2
variable receives the upfilen
parameter from a POST request. However, since the user can control the input of upfilen
, the statement can cause a buffer overflow. The user-provided upfilen
can exceed the capacity of the v20
array, triggering this security vulnerability.