Tenda Vulnerability Vendor: Tenda Product: AX3 Version: V16.03.12.10_CN Type: Stack Overflow Author: Jiaqian Peng Institution: pengjiaqian@lie.ac.cn Vulnerability Description We found a stack overflow vulnerability in Tenda router with firmware which was released recently, allowing remote attackers to crash the server. Stack Overflow In binary: In the router's function, is directly passed by the attacker. If this part of the data is too long, it will cause the stack overflow. We can control the to execute arbitrary code. The input has not been checked. The parameter is directly copied to a local variable placed on the stack, which overwrites the return address of the function, causing buffer overflow. PoC Result The target router crashes and cannot provide services correctly and persistently.