Stack Overflow Vulnerability in TOTOLINK X5000R v9.1.0u.6118_B20201102: Exploiting setL2tpServerCfg Function

Stack Overflow Vulnerability in TOTOLINK X5000R v9.1.0u.6118_B20201102: Exploiting setL2tpServerCfg Function

CVE-2021-45736 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

TOTOLINK X5000R v9.1.0u.6118_B20201102 was discovered to contain a stack overflow in the function setL2tpServerCfg. This vulnerability allows attackers to cause a Denial of Service (DoS) via the eip, sip, server parameters.

Learn more about our Cis Benchmark Audit For Server Software.