Headline
CVE-2022-41483: Bug-Report/tenda-AC6- 0x4212cc.md at main · Davidteeri/Bug-Report
Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 was discovered to contain a buffer overflow in the 0x4a12cc function. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted request.
Vulnerability Report
Vendor: Tenda
Product: AC1200 Smart Dual-Band WiFi Router
Version: US_AC6V2.0RTL_V15.03.06.51_multi_TDE01(Download Link:https://www.tendacn.com/download/detail-3794.html)
Type: Buffer Overflow
Vulnerability description
We found a buffer overflow vulnerability in AC1200 with firmware which was released recently, allows remote attackers to destory the execution memory from a crafted request. This can cause a denial of service or impact code execution.
Remote Command Execution
In httpd binary:
In function 0x4a12cc, the value of _src is obtained through websGerVar.
The _src is copied to info.urls via strcpy. However, the length of _src is not checked, the buffer of info is 0x254 bytes. This can lead to buffer overflows.