Description
Stack buffer overflow in httpd in Asuswrt-Merlin firmware 380.67_0RT-AC5300 and earlier for ASUS devices and ASUS firmware for ASUS RT-AC5300, RT_AC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-AC66U_B1, RT-AC58U, RT-AC56U, RT-AC55U, RT-AC52U, RT-AC51U, RT-N18U, RT-N66U, RT-N56U, RT-AC3200, RT-AC3100, RT_AC1200GU, RT_AC1200G, RT-AC1200, RT-AC53, RT-N12HP, RT-N12HP_B1, RT-N12D1, RT-N12+, RT_N12+_PRO, RT-N16, and RT-N300 devices allows remote attackers to execute arbitrary code on the router by sending a crafted http GET request packet that includes a long delete_offline_client parameter in the url.
Published: 2017-08-09
Score: 8.8 High
EPSS: 12.3% Moderate
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

No history.

Subscriptions

Asuswrt-merlin Asuswrt-merlin Rt-ac1200 Rt-ac3100 Rt-ac3200 Rt-ac51u Rt-ac52u Rt-ac53 Rt-ac5300 Rt-ac55u Rt-ac56u Rt-ac58u Rt-ac66u Rt-ac66u B1 Rt-ac68p Rt-ac68u Rt-ac88u Rt-n12\+ Rt-n12d1 Rt-n12hp Rt-n12hp B1 Rt-n16 Rt-n18u Rt-n300 Rt-n56u Rt-n66u Rt Ac1200g Rt Ac1200gu Rt Ac1900p Rt N12\+ Pro
cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2024-08-05T18:51:06.166Z

Reserved: 2017-08-09T00:00:00.000Z

Link: CVE-2017-12754

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-08-09T15:29:00.183

Modified: 2026-05-13T00:24:29.033

Link: CVE-2017-12754

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses