Vendor: Tenda Product: AX-1803 Version: v1.0.0.1 Vulnerability Type: Stack Overflow Author: Shuhao Shen Vulnerability cause Function: Parameter: Issue: The code does not restrict the length of the ssid parameter, but has a limited size. Attack: By constructing a request with an excessively long ssid parameter, a heap or stack overflow can be triggered, leading to a Denial of Service (DoS) attack. PoC Implementation: Boot the firmware by qemu-system or other means (real machine). Attack Method: Use the following PoC attack: Result The target router crashes and cannot provide services correctly and persistently.