A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This mani…

A critical vulnerability has been discovered in Tenda F453 router firmware version 1.0.0.3. The flaw affects the fromPPTPUserSetting function in the /goform/PPTPUserSetting file within the httpd component. An attacker can manipulate the 'delno' argument to trigger a stack-based buffer overflow. The vulnerability allows for remote exploitation without authentication. Public exploits are already available, making this a high-priority security issue. Organizations using affected Tenda F453 routers should apply patches immediately or implement mitigating controls.