NEXTU FLETA AX1500 WiFi6 Router Stack Overflow Vulnerability Leading to Denial-of-Service
Vulnerability
A stack overflow vulnerability has been identified in the NEXTU FLETA AX1500 WiFi6 Router, specifically in version 1.0.3. The issue arises in the Boa web server handling of the 'url' parameter within the '/boafrm/formFilter' endpoint. The vulnerability allows attackers to craft a POST request that causes a denial-of-service condition by exploiting the unchecked length of the 'url' parameter, leading to a buffer overflow.
Impact
Exploitation of this vulnerability causes a denial-of-service condition on the affected router. Additionally, according to the proof of concept, this vulnerability could be leveraged for arbitrary remote code execution.
Reproduction
To reproduce this vulnerability, send a POST request to the '/boafrm/formFilter' endpoint with a crafted 'url' parameter that exceeds the buffer size limit. This can be done using a tool like Burp Suite or a custom script that automates the process. The router must be in its factory default state or the user must be logged in.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.