Linksys Vulnerability Vendor: Linksys Product: RE6500, RE6250, RE6300, RE6350, RE7000, RE9000 Version: - RE6500 (1.0.13.001) - RE6250 (1.0.04.001) - RE6300 (1.2.07.001) - RE6350 (1.0.04.001) - RE7000 (1.1.05.003) - RE9000 (1.0.04.002) Type: Stack Overflow Author: Jiaqian Peng Institution: Institute of Information Engineering, Chinese Academy of Sciences (IIE, CAS) Vulnerability Description Stack Overflow: - The vulnerability is located in the binary. - Within the router's function, the parameter is directly supplied by the attacker. If the input data exceeds a certain length, it triggers a stack overflow, enabling the attacker to manipulate the and execute arbitrary code. - The parameter is copied to a local stack variable without proper length validation, resulting in a buffer overflow. PoC (Proof of Concept) Result The target router crashes and is unable to provide services correctly and persistently.