Jackwesley

**Name of the Vulnerable Software and Affected Versions** TOTOLINK WA1200 version 5.9c.2914 **Description** A flaw exists in the HTTP Request Handler component of TOTOLINK WA1200 version 5.9c.2914. Specifically, the issue resides in an unknown function within the `cstecgi.cgi` file. This manipulation results in a null pointer dereference, and the attack can be performed remotely. The exploit for this issue has been publicly disclosed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK WA300 version 5.2cu.7112 B20190227 **Description** A security issue exists in TOTOLINK WA300 version 5.2cu.7112 B20190227. The `sub 401510` function within the `cstecgi.cgi` file is susceptible to command injection through manipulation of the `UPLOAD FILENAME` argument. This allows for remote exploitation. The exploit for this issue has been publicly disclosed. **Recommendations** Apply a newer version of the software that addresses this vulnerability. As a temporary workaround, restrict access to the `cstecgi.cgi` file or disable the `sub 401510` function until a patch is available. Avoid using the `UPLOAD FILENAME` parameter in the affected file.

**Name of the Vulnerable Software and Affected Versions** TOTOLINK T10 version 4.1.8cu.5083 B20200521 **Description** A flaw exists in TOTOLINK T10 firmware that allows for a remote stack-based buffer overflow. The issue is located within the `sprintf` function in the `/cgi-bin/cstecgi.cgi` file. Manipulation of the `loginAuthUrl` argument can trigger the overflow. The attack can be performed remotely. **Recommendations** Update to a newer version of TOTOLINK T10 firmware that addresses this vulnerability.