漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability
Vulnerability Description
NETGEAR RAX30 soap_serverd Stack-based Buffer Overflow Authentication Bypass Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR RAX30 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the soap_serverd binary. When parsing SOAP message headers, the process does not properly validate the length of user-supplied data prior to copying it to a fixed-length stack-based buffer. An attacker can leverage this vulnerability to bypass authentication on the system. Was ZDI-CAN-19839.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
NETGEAR RAX35 安全漏洞
Vulnerability Description
NETGEAR Rax35是美国网件(NETGEAR)公司的一款无线路由器。 NETGEAR RAX35 存在安全漏洞。攻击者利用该漏洞可能会绕过产品的身份验证。
CVSS Information
N/A
Vulnerability Type
N/A