Stack-Based Buffer Overflow in Tenda Routers Causing Service Interruptions
CVE-2017-9139

3.5LOW

Key Information:

Vendor: Tenda
Status: F1200 Firmware
Vendor: CVE Published:; 21 May 2017

What is CVE-2017-9139?

A vulnerability exists in certain Tenda routers where a stack-based buffer overflow can be triggered by specially crafted POST requests. This issue affects the HTTP service, causing brief interruptions lasting 1 to 2 seconds, which can disrupt access to the router's web interface. Users should ensure their devices are updated to mitigate potential risks.

References

http://www.tendacn.com/en/2017.html

x_refsource_MISC

CVSS V3.1

Score:

3.5

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 21, 2017