Skip to content
/ tenda-ac8v4-rop Public

Exploits for Tenda Ac8v4 stack-based overflow to Remote-Code Execution via Mipsel Ropping (CVE-2023-33669 - CVE-2023-33675)

0reg.dev/blog/tenda-ac8-rop
4 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

retr0reg/tenda-ac8v4-rop

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

47 Commits
cve-reports
cve-reports
 
 
exploit
exploit
 
 
README.md
README.md
 
 

Repository files navigation

Tenda-Ac8v4-PoC

Tenda Ac8v4 Stack-Based Overflow to Remote-Code Execution via execution-flow hijacking & multiple-register manipulation exploitation; CVEs are:

  • CVE-2023-33675
  • CVE-2023-33673
  • CVE-2023-33672
  • CVE-2023-33671
  • CVE-2023-33670
  • CVE-2023-33669

Marked as N1 - N7

rop.py

  • make sure you hosted tftp on accessible machine; specific it by args.attacker_host;
  • make sure pre-compiled loader rs is hosted in tftp;
  • reverse-shell connection will be listen in-script.

About

Exploits for Tenda Ac8v4 stack-based overflow to Remote-Code Execution via Mipsel Ropping (CVE-2023-33669 - CVE-2023-33675)

0reg.dev/blog/tenda-ac8-rop

Resources

Readme
Activity

Stars

4 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages