Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stack buffer overflow vulnerability exists in the ToToLink LR1200GB (V9.1.0u.6619_B20230130) and NR1800X (V9.1.0u.6681_B20230703) Router firmware within the cstecgi.cgi binary (setDefResponse function). The binary reads the "IpAddress" parameter from a web request and copies it into a fixed-size stack buffer using strcpy() without any length validation. Maliciously crafted input can overflow the buffer, leading to potential arbitrary code execution or memory corruption, without requiring authentication.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
TOTOLINK LR1200GB 安全漏洞
Vulnerability Description
TOTOLINK LR1200GB是中国吉翁电子(TOTOLINK)公司的一款无线双频 4G LTE 路由器。 ToToLink LR1200GB V9.1.0u.6619_B20230130版本和NR1800X V9.1.0u.6681_B20230703版本存在安全漏洞,该漏洞源于cstecgi.cgi二进制文件中存在栈缓冲区溢出,可能导致执行任意代码或内存损坏。
CVSS Information
N/A
Vulnerability Type
N/A