author:Yifeng Li, Wolin Zhuang;
## Vulnerability description
We found an buffer overflow vulnerability in IP-COM Technology IP-COM’s M50 routers with firmware which was released recently, allows control “ip” , "mac" or "remark" to attack it.
## Buffer Overflow vulnerability
In formIPMacBindModify function, the parameter “ip” , "mac" and "remark" is directly sprintf, placed on the stack, which overrides the return address of the function, causing buffer overflow.
### Buffer Overflow
We set the value of “ip” , "mac" or "remark" as aaaaaaaaaaaaaaaaaaaaaaaaa…… and the router will cause buffer overflow.