Tenda AC7 Buffer Overflow Vulnerability in PPTP Server Configuration

Vulnerability

A critical buffer overflow vulnerability has been identified in the Tenda AC7 router running firmware version 15.03.06.44. The issue arises in the 'formSetPPTPServer' function within the file '/goform/SetPptpServerCfg'. The vulnerability is triggered by manipulating the 'pptp_server_start_ip' and 'pptp_server_end_ip' arguments, allowing for remote exploitation. The flaw occurs because the 'sscanf' function copies data from these arguments to internal variables without proper bounds checking, potentially leading to memory corruption. This vulnerability could cause a crash or even allow for remote code execution.

Impact

Exploitation of this vulnerability results in a buffer overflow, which can overwrite adjacent memory and potentially lead to arbitrary code execution.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.5

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

2.6

impact

7.5

exploitability

6.2

remediation

0.0

relevance

0.0

threat

6.5

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Tenda AC7 Buffer Overflow Vulnerability in PPTP Server Configuration

Vulnerability

Impact

Affected Products

Tenda AC7

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating