Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of service due to a logic bug at address 0x40dcd0 when calling fprintf with "%s: key len = %d, too long\n" format. The two variables seem to be put in the wrong order. The vulnerability could be triggered by sending the POST request to apply_cgi with a long and unknown key in the request body.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Trendnet多种产品格式化字符串错误漏洞
Vulnerability Description
Trendnet TRENDnet TEW-755AP等都是美国趋势网络(Trendnet)公司的一款路由器。 TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03和TEW-825DAP 1.11B03存在格式化字符串错误漏洞,该漏洞源于网络系统或产品接收外部格式化字符串作为参数时,对参数类型、数量等过滤不严格。
CVSS Information
N/A
Vulnerability Type
N/A