Heap-Based Buffer Overflow in Tenda Routers
CVE-2018-18729

9.8CRITICAL

Key Information:

Vendor: Tenda
Status: Ac7 Firmware
Vendor: CVE Published:; 29 October 2018

What is CVE-2018-18729?

A heap-based buffer overflow has been detected in the web server component of Tenda routers, specifically in their handling of the 'mac' parameter in POST requests. This flaw allows attackers to exploit the strcpy function, which directly uses user-supplied values without proper sanitization, leading to potential information leakage or unauthorized control over the program's execution flow. Users of the affected Tenda devices should take immediate action to secure their systems against possible exploitation.

References

https://github.com/ZIllR0/Routers/blob/master/Tenda/heapo...

x_refsource_MISC

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 29, 2018
Vulnerability Reserved
Oct 27, 2018