Stack overflow

2020-06-2312:15:00

PRIOn knowledge base

www.prio-n.com

9.9 High

AI Score

Confidence

High

0.105 Low

EPSS

Percentile

95.0%

JSON

A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi.

CPENameOperatorVersion
vigor2960_firmwarelt1.5.1.1
vigor300b_firmwarelt1.5.1.1
vigor3900_firmwarelt1.5.1.1

Name	Operator	Version
vigor2960_firmware	lt	1.5.1.1
vigor300b_firmware	lt	1.5.1.1
vigor3900_firmware	lt	1.5.1.1

References

github.com/dexterone/Vigor-poc

www.draytek.com/about/security-advisory

www.draytek.com/about/security-advisory/vigor3900-/-vigor2960-/-vigor300b-stack-based-buffer-overflow-vulnerability-%28cve-2020-14473%29