Linksys Vulnerability Key Information Vendor: Linksys Affected Products: RE6500, RE6250, RE6300, RE6350, RE7000, RE9000 Versions: - RE6500: 1.0.013.001 - RE6250: 1.0.04.001 - RE6300: 1.2.07.001 - RE6350: 1.0.04.001 - RE7000: 1.0.05.003 - RE9000: 1.0.04.002 Vulnerability Type: Stack Overflow Author: Jiajian Peng Institution: Institute of Information Engineering, Chinese Academy of Sciences (IE, CAS) Vulnerability Description A stack overflow vulnerability was found in the Linksys router firmware, allowing remote attackers to crash the server. Stack Overflow Details The parameter is directly passed by the attacker and copied to a local variable on the stack. If the data is too long, it causes a stack overflow, allowing control over the return address of the function. This can lead to arbitrary code execution. PoC The proof-of-concept involves setting as a long string ( ), causing the router to crash. Result The target router crashes and cannot provide services correctly or persistently. Supplement To avoid such issues, input validation should be implemented to check string content during extraction.