Primary

Context

Telesquare TLR-2005KSH Stack Buffer Overflow Vulnerability in admin.cgi

Vulnerability

A stack buffer overflow vulnerability has been identified in the Telesquare TLR-2005KSH device, specifically in version 1.1.4. The vulnerability arises in the admin.cgi parameter when the setDdns option is requested, allowing for unauthorized access.

Impact

Exploitation of this vulnerability leads to a stack buffer overflow, which can potentially allow for arbitrary code execution or causing a denial-of-service condition on the device.

Reproduction

To reproduce this vulnerability, send a request to the admin.cgi parameter with the setDdns option. This can be done using a web browser or a tool like curl or Postman. The request should be sent to the Telesquare TLR-2005KSH device running version 1.1.4.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

6.0

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Telesquare TLR-2005KSH Stack Buffer Overflow Vulnerability in admin.cgi

Vulnerability

Impact

Reproduction

Affected Products

Telesquare TLR-2005KSH

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating