This issue was discovered by Matthew Daley of Facebook through an EclecticIQ vulnerability scanner. Tenda AC1200 users are advised to update their firmware to mitigate this risk.
Another common vulnerability scanner that reveals the presence of the 0x47ce00 buffer overflow is Qualys X-Pack. An example of the results of a scan for Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 on Qualys X-Pack is shown below. Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 is currently vulnerable via this buffer overflow.
Screen shot of Tenda AC1200 US_AC6V2.0RTL_V15.03.06.51_multi_TDE01 on Qualys X-Pack
Installing the Current Firmware on Tenda AC1200
To mitigate this risk, Tenda AC1200 users are advised to update their firmware. The current firmware is V15.03.06.51 and can be downloaded from the following link:
www.tenda-australia.com/en/support/product-updates
Shodan
Reveals Tenda AC1200 Vulnerability
Tenda AC1200 devices are also susceptible to the 0x47ce00 buffer overflow vulnerability found in CVE-2022-41485. Anyone with a Shodan account has access to the vulnerable devices.
The command used to exploit this vulnerability is:
"nc -l 25565
Timeline
Published on: 10/13/2022 19:15:00 UTC
Last modified on: 10/18/2022 17:31:00 UTC