A stack-based buffer overflow in the httpd server on Tenda AC9 V15.03.06.60_EN allows remote attackers to execute arbitrary code or cause a denial of service (DoS) via a crafted POST request to /goform/SetStaticRouteCfg.
References
Link | Resource |
---|---|
https://github.com/grapefruitvul/vulinfo/blob/master/tenda/vul1.md | Exploit Third Party Advisory |
https://cwe.mitre.org/data/definitions/121.html | Technical Description |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2021-09-30 14:15
Updated : 2022-09-14 13:33
NVD link : CVE-2020-20746
Mitre link : CVE-2020-20746
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
tendacn
- ac9
- ac9_firmware