Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to execute arbitrary code by providing a long string to the blocking.asp page via a GET or POST request. Vulnerable parameters are flag, mac, and cat_id.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
asus rt-ac66u_firmware |