mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-07 19:16:22 +00:00
902 B
902 B
CVE-2020-26561
Description
** UNSUPPORTED WHEN ASSIGNED ** Belkin LINKSYS WRT160NL 1.0.04.002_US_20130619 devices have a stack-based buffer overflow vulnerability because of sprintf in create_dir in mini_httpd. Successful exploitation leads to arbitrary code execution. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
POC
Reference
- https://research.nccgroup.com/2020/10/20/wrt160nl-cve-2020-26561-bof/
- https://research.nccgroup.com/2020/10/20/wrt160nl-cve-2020-26561-bof/
Github
No PoCs found on GitHub currently.