Lucene search
China National Vulnerability DatabaseCNVD-2024-04921HistoryJan 11, 2024 - 12:00 a.m.
TOTOLINK N350RT password parameter buffer overflow vulnerability
2024-01-1100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
totolink n350rt
buffer overflow
loginauth
remote attacker
arbitrary code
denial of service
cnvd
The TOTOLINK N350RT is a small home router from Chinaβs Gion Electronics (TOTOLINK). The TOTOLINK N350RT suffers from a buffer overflow vulnerability that originates from the failure of the password parameter of the loginAuth function on the /cgi-bin/cstecgi.cgi page to correctly validate the length of the input data, which can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial of service attack.
Related
cve
cve
CVE-2023-7218
2024-01-08 21:15:10
prion
prion
Stack overflow
2024-01-08 21:15:00
cvelist
cvelist
CVE-2023-7218 Totolink N350RT cstecgi.cgi loginAuth stack-based overflow
2024-01-08 21:00:05
nvd
nvd
CVE-2023-7218
2024-01-08 21:15:10