Buffer Overflow Vulnerability in TOTOLINK AC1200 Wireless Router A3002R Firmware
CVE-2024-34195
9.8CRITICAL
What is CVE-2024-34195?
The TOTOLINK AC1200 Wireless Router A3002R Firmware version V1.1.1-B20200824 is susceptible to a buffer overflow vulnerability due to inappropriate handling of input lengths in its boa server's CGI processing. Specifically, the wlan_ssid field lacks adequate length restriction, making it possible for attackers to manipulate the formWlanRedirect and formWlEncrypt functions. This manipulation can lead to a buffer overflow scenario that may allow unauthorized command execution or a denial of service, posing significant risks to device integrity and the security of the network.