Hacker128

A vulnerability was detected in Tenda W20E 15.11.0.6. This vulnerability affects the function formSetPortMirror of the file /goform/setPortMirror. Performing a manipulation of the argument portMirrorMirroredPorts results in stack-based buffer overflow. The attack can be initiated remotely. The exploit is now public and may be used.

A flaw has been found in Tenda W20E 15.11.0.6. This issue affects the function formPortalAuth of the file /goform/PortalAuth of the component Web Management Interface. Executing a manipulation of the argument gotoUrl can lead to stack-based buffer overflow. The attack can be launched remotely. The exploit has been published and may be used.

A vulnerability has been found in Tenda W20E 15.11.0.6. Impacted is the function modifyWifiFilterRules of the file /goform/modifyWifiFilterRules of the component Web Management Interface. The manipulation of the argument wifiFilterListRemark leads to stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

**Name of the Vulnerable Software and Affected Versions** Tenda AC18 version 15.03.05.05 **Description** A stack-based buffer overflow exists in the Web Management Interface. The issue occurs within the `sub 45304()` function of the '/goform/getRebootStatus' endpoint when the `callback` argument is manipulated. This allows a remote attacker to trigger the overflow. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the '/goform/getRebootStatus' endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda F451 versions 1.0.0.7 through 1.0.0.9 **Description** A security flaw in the Web Management Interface allows remote exploitation via OS command injection. The issue exists within the `formWriteFacMac()` function located in the `/goform/WriteFacMac` file. An attacker can trigger this by manipulating the `mac` argument. **Recommendations** For versions 1.0.0.7 through 1.0.0.9, disable remote management. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda F451 versions 1.0.0.7 through 1.0.0.9 **Description** A stack-based buffer overflow exists in the Web Management Interface. This issue occurs within the `fromNatlimit()` function located in the `/goform/Natlimit` file. A remote attacker can trigger this by manipulating the `page` argument. A stack-based buffer overflow is a condition where a program writes more data to a buffer located on the stack than the buffer is allocated to hold, potentially leading to crashes or arbitrary code execution. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, restrict access to the `/goform/Natlimit` endpoint to minimize the risk of exploitation.