Svigo_O

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A stack-based buffer overflow exists in the HTTP Handler component of Tenda W3 version 1.0.0.3(2204). The issue is located in the `formSetCfm` function within the `/goform/setcfm` file. Manipulation of the `funcpara1` argument can trigger the overflow. The attack is limited to the local network. The exploit for this issue has been publicly released. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A flaw exists in the Tenda W3 device. This issue affects the `formSetAutoPing` function within the `/goform/setAutoPing` file of the POST Parameter Handler component. Manipulation of the `ping1` and `ping2` arguments can lead to a stack-based buffer overflow. The attack can be carried out remotely. The exploit for this issue has been publicly disclosed. **Recommendations** Update to a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A flaw exists in the HTTP Handler component of Tenda W3 version 1.0.0.3(2204). Specifically, the `formexeCommand` function within the `/goform/exeCommand` file is susceptible to a stack-based buffer overflow. Manipulation of the `cmdinput` argument can trigger this issue, potentially allowing for remote code execution. The exploit for this issue is publicly available. **Recommendations** Update to a newer version that contains a fix for this vulnerability. As a temporary workaround, consider disabling the `formexeCommand` function until a patch is available. Restrict access to the `/goform/exeCommand` file to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A security issue has been identified in Tenda W3 version 1.0.0.3(2204). The issue resides in the `formWifiMacFilterGet` function within the `/goform/WifiMacFilterGet` file of the POST Parameter Handler component. Manipulation of the `wl radio` argument can lead to a stack-based buffer overflow. Remote initiation of the attack is possible. A public exploit is available. **Recommendations** Versions prior to 1.0.0.3(2204) are affected. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A weakness exists in the Tenda W3 version 1.0.0.3(2204). The `formWifiMacFilterSet` function within the `/goform/WifiMacFilterSet` file of the POST Parameter Handler component is affected. Manipulating the `index/GO` argument can lead to a stack-based buffer overflow. The attack can be launched remotely. The exploit has been made publicly available and could be used for attacks. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A stack-based buffer overflow exists in the Tenda W3 version 1.0.0.3(2204). The issue is located in unknown code within the `/goform/wifiSSIDget` file of the POST Parameter Handler component. Manipulation of the `index` argument can trigger the buffer overflow, allowing for remote exploitation. The exploit is publicly available. **Recommendations** Versions prior to 1.0.0.3(2204) are recommended.

**Name of the Vulnerable Software and Affected Versions** Tenda W3 version 1.0.0.3(2204) **Description** A flaw exists in the Tenda W3 router related to the processing of the `/goform/wifiSSIDset` file within the POST Parameter Handler component. Manipulating the `index/GO` argument can trigger a stack-based buffer overflow, potentially allowing for remote attacks. The exploit for this issue has been published. **Recommendations** Tenda W3 version 1.0.0.3(2204): At the moment, there is no information about a newer version that contains a fix for this vulnerability.