The TOTOLINK N350RT is a small home router from Chinaβs Gion Electronics (TOTOLINK). The TOTOLINK N350RT suffers from a buffer overflow vulnerability that originates from the failure of the password parameter of the loginAuth function on the /cgi-bin/cstecgi.cgi page to correctly validate the length of the input data, which can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial of service attack.