3 matches found
TOTOLINK LR350 loginAuth function buffer overflow vulnerability
TOTOLINK LR350 is a 4G LTE router from China's TOTOLINK , which supports converting 4G signals to wired signals for home and office scenarios. The TOTOLINK LR350 suffers from a buffer overflow vulnerability, which arises when the password parameter in the loginAuth function fails to correctly...
CVE-2015-9542
addpassword in pamradiusauth.c in pamradius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy. An attacker could send a crafted password to an application loading the pamradius library and crash it. Arbitrary code...
UBUNTU-CVE-2015-9542
addpassword in pamradiusauth.c in pamradius 1.4.0 does not correctly check the length of the input password, and is vulnerable to a stack-based buffer overflow during memcpy. An attacker could send a crafted password to an application loading the pamradius library and crash it. Arbitrary code...