Ba1100N

**Name of the Vulnerable Software and Affected Versions** Tenda AC6V2 versions through 15.03.06.50 **Description** The issue is a stack-based buffer overflow vulnerability in the fromAdvSetLanip module, specifically with the `lanMask` argument, allowing buffer overflows. This problem affects Tenda AC6V2 devices, potentially allowing attackers to overflow buffers. **Recommendations** For Tenda AC6V2 versions through 15.03.06.50, update to a version later than 15.03.06.50 to resolve the issue. As a temporary workaround, consider restricting access to the fromAdvSetLanip module until a patch is available. Avoid using the `lanMask` argument in the affected module until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Tenda AC6V2 versions through 15.03.06.50 **Description** The issue is a stack-based buffer overflow vulnerability in the setDoublePppoeConfig->guest ip check modules of Tenda AC6V2, where the `mask` argument can cause buffer overflows. **Recommendations** For Tenda AC6V2 versions through 15.03.06.50, consider disabling the `setDoublePppoeConfig` function or restricting access to the `guest ip check` module until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda AC6V2 versions through 15.03.06.50 **Description** The issue is a stack-based buffer overflow vulnerability in the setDoubleL2tpConfig->guest ip check modules, allowing buffer overflows. This vulnerability affects Tenda AC6V2 and can be exploited for remote code execution. **Recommendations** For Tenda AC6V2 versions through 15.03.06.50, update the firmware to a version later than 15.03.06.50 to resolve the issue. As a temporary workaround, consider restricting access to the `setDoubleL2tpConfig` module and the `guest ip check` function until a patch is available. Avoid using the `mask` argument in the affected modules until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Tenda AC6V2 versions through 15.03.06.50 **Description** The issue is a Stack-based Buffer Overflow vulnerability in the WizardHandle modules of Tenda AC6V2, allowing buffer overflows. **Recommendations** For versions through 15.03.06.50, consider disabling the WizardHandle modules as a temporary workaround until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.