Several stack-based buffer overflow... CVE-2022-41016

- AV AC AU C I A
发布: 2023-01-26
修订: 2024-11-21

Several stack-based buffer overflow vulnerabilities exist in the DetranCLI command parsing functionality of Siretta QUARTZ-GOLD G5.0.1.5-210720-141020. A specially-crafted network packet can lead to arbitrary command execution. An attacker can send a sequence of requests to trigger these vulnerabilities.This buffer overflow is in the function that manages the 'no vpn basic protocol (l2tp|pptp) name WORD server WORD username WORD passsword WORD firmwall (on|off) defroute (on|off)' command template.

0%
暂无可用Exp或PoC
当前有4条受影响产品信息