A weakness has been identified in LB-LINK BL-WR9000 2.4.9. The affected element is the function sub_44E8D0 of the file /goform/get_virtual_cfg. Executing a manipulation can lead to stack-based buffer overflow. The attack may be performed from remote. The exploit has been made available to the public and could be used for attacks. The vendor was contacted early about this disclosure but did not respond in any way.
oryginał ENCVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XLb Link Bl Wr9000
HWLb-Linkwszystkie wersjeLb Link Bl Wr9000 Firmware
OSLb-Link2.4.9
Powiązane podatności
LB-LINK BL-AC1900_2.0 v1.0.1, LB-LINK BL-WR9000 v2.4.9, LB-LINK BL-X26 v1.2.5, and LB-LINK BL-LTE300 v1.0.8 we...
A security vulnerability has been detected in LB-LINK BL-WR9000 2.4.9. The impacted element is the function su...
W routerze LB-LINK BL-WR9000 w wersji 2.4.9 wykryto lukę w funkcji sub_458754 pliku /goform/set_wifi. Manipula...
RCE w LB-Link BL-AC2100 przez parametry set_LimitClient_cfg
RCE w LB-Link BL-AC2100 — nieprawidłowa obsługa parametru enable