Stack-based buffer overflow in Tenda AC-10U AC1200 Router US_AC10UV1.0RTL_V15.03.06.48_multi_TDE01 allows remote attackers to execute arbitrary code via the timeZone parameter to goform/SetSysTimeCfg.
References
Link | Resource |
---|---|
https://github.com/1sd3d/Tendown/tree/master/PoCs/Auth/bof11 | Broken Link |
https://github.com/Lyc-heng/routers/blob/main/routers/stack1.md | Exploit Third Party Advisory |
https://cwe.mitre.org/data/definitions/121.html | Technical Description |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Information
Published : 2021-10-29 04:15
Updated : 2022-10-26 06:55
NVD link : CVE-2020-22079
Mitre link : CVE-2020-22079
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
tendacn
- ac9
- ac9_firmware
- ac10u
- ac10u_firmware