Noahze

Name of the Vulnerable Software and Affected Versions: D-Link DIR-605L version 2.13B01 BETA Description: A critical issue affects the `formSetDomainFilter` function in the `/goform/formSetDomainFilter` file. The manipulation of the `curTime` argument leads to a buffer overflow. This issue can be exploited remotely. The exploit has been made public and may be used. The vulnerability is related to the lack of size checking for input data, which allows an attacker to impact the confidentiality, integrity, and availability of protected information by sending a specially crafted POST request. Recommendations: As a temporary workaround, consider disabling the `formSetDomainFilter` function until a patch is available. Restrict access to the `/goform/formSetDomainFilter` endpoint to minimize the risk of exploitation. Avoid using the `curTime` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: D-Link DIR-605L version 2.13B01 BETA Description: A critical issue affects the `formSetQoS` function of the file `/goform/formSetQoS`. The manipulation of the `curTime` argument leads to a buffer overflow. This can be exploited remotely, potentially impacting the confidentiality, integrity, and availability of protected information. The exploit has been disclosed publicly and may be used. An attack can be initiated by sending a specially crafted POST request. Recommendations: For D-Link DIR-605L version 2.13B01 BETA, as a temporary workaround, consider disabling the `formSetQoS` function until a patch is available. Restrict access to the `/goform/formSetQoS` endpoint to minimize the risk of exploitation. Avoid using the `curTime` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: TOTOLINK AC1200 T8 version 4.1.5cu.861 B20230220 Description: A critical issue affects the `setWiFiScheduleCfg` function of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `desc` leads to buffer overflow. The attack may be initiated remotely. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For TOTOLINK AC1200 T8 version 4.1.5cu.861 B20230220, as a temporary workaround, consider disabling the `setWiFiScheduleCfg` function until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the argument `desc` in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: TOTOLINK AC1200 T8 and AC1200 T10 versions 4.1.5cu.861 B20230220 through 4.1.8cu.5207 Description: A critical vulnerability was found in the TOTOLINK AC1200 series, affecting the function `setParentalRules` of the file `/cgi-bin/cstecgi.cgi`. The manipulation of the argument `desc` leads to buffer overflow. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way. Recommendations: For TOTOLINK AC1200 T8 and AC1200 T10 versions 4.1.5cu.861 B20230220 through 4.1.8cu.5207, consider disabling the `setParentalRules` function in the `/cgi-bin/cstecgi.cgi` file as a temporary workaround until a patch is available. Restrict access to the `/cgi-bin/cstecgi.cgi` file to minimize the risk of exploitation. Avoid using the `desc` argument in the affected function until the issue is resolved. Update firmware as soon as possible and restrict admin access to prevent remote attacks. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda O3 version 1.0.0.10(2478) **Description** A critical issue affects the `fromMacFilterSet` function of the file `/goform/setMacFilter`. The manipulation of the `remark` argument leads to a stack-based buffer overflow. This issue can be initiated remotely. The exploit has been disclosed publicly and may be used. **Recommendations** For Tenda O3 version 1.0.0.10(2478), as a temporary workaround, consider disabling the `fromMacFilterSet` function until a patch is available. Restrict access to the `/goform/setMacFilter` file to minimize the risk of exploitation. Avoid using the `remark` argument in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** Tenda O3 version 1.0.0.10(2478) **Description** A critical issue affects the function `fromSafeSetMacFilter` of the file `/goform/setMacFilterList`. The manipulation of the argument `time` leads to a stack-based buffer overflow. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. **Recommendations** For Tenda O3 version 1.0.0.10(2478), as a temporary workaround, consider disabling the `fromSafeSetMacFilter` function until a patch is available. Restrict access to the `/goform/setMacFilterList` endpoint to minimize the risk of exploitation. Avoid using the `time` argument in the affected function until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this issue.