4 matches found
CVE-2025-60696
A stack-based buffer overflow vulnerability exists in the makeRequest.cgi binary of Linksys RE7000 routers Firmware FWv2.0.152112301012. The arplookup function parses lines from /proc/net/arp using sscanf"%16s ... %18s ...", storing results into buffers v6 12 bytes and v7 20 bytes. Since the form...
CVE-2025-60692
A stack-based buffer overflow vulnerability exists in the libshared.so library of Cisco Linksys E1200 v2 routers Firmware E1200v2.0.11.001us.tar.gz. The functions getmacfromip and getipfrommac use sscanf with overly permissive "%100s" format specifiers to parse entries from /proc/net/arp into...
CVE-2025-60696
Linksys RE7000 devices with firmware FW_v2.0.15_211230_1012 are affected by CVE-2025-60696: a stack-based buffer overflow in the makeRequest.cgi binary’s arplookup path. The vulnerability arises from parsing /proc/net/arp with sscanf("%16s ... %18s ..."), writing into small buffers (v6 12 bytes, ...
blarp.txt
!/usr/bin/perl kokanin@gmail dot com 20070604 ARP dos, makes the target windows pc unusable for the duration of the attack. determines if we send directly or via broadcast, bcast seems to be more effective works even when printing info locally Why store mac addresses for addresses outside ones...