The vulnerability of the httpd function’s unescape function in the cgi.c file of the Asuswrt-Merlin New Gen microprogramming system allows a hacker to cause memory corruption.
The vulnerability of the unescape function in httpd’s cgi.c file of the Asuswrt-Merlin New Gen software relates to the escape operation going beyond buffer boundaries in memory. Exploiting this vulnerability could allow a remote attacker to cause memory corruption by sending a specially crafted...