Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers (Firmware E1200_v2.0.11.001_us.tar.gz). The functions get_mac_from_ip and get_ip_from_mac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into fixed-size buffers (v6: 50 bytes, v7 sub-arrays: 50 bytes). This allows local attackers controlling the contents of /proc/net/arp to overflow stack buffers, leading to memory corruption, denial of service, or potential arbitrary code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linksys E1200 安全漏洞
Vulnerability Description
Linksys E1200是美国Linksys公司的一款路由器。 Linksys E1200 E1200_v2.0.11.001_us.tar.gz版本存在安全漏洞,该漏洞源于libshared.so库中存在栈缓冲区溢出,可能导致内存损坏、拒绝服务或执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A