Primary

Context

UTT 1250GW Buffer Overflow Vulnerability in formConfigApConfTemp

Vulnerability

A buffer overflow vulnerability has been identified in the UTT 1250GW router, affecting firmware versions through 3.2.2-200710. The issue arises in the function sub_453DC within the file /goform/formConfigApConfTemp. This vulnerability allows for remote exploitation, where an attacker can manipulate parameters to cause a buffer overflow, potentially leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can disrupt normal operation and potentially allow for arbitrary code execution.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /goform/formConfigApConfTemp endpoint. The request must include a payload that exceeds the buffer size, which can be achieved by appending a large amount of data to the 'action' parameter. The request should also include the necessary Digest authentication headers.

Added: Sep 9, 2025, 10:23 PM

Updated: Sep 9, 2025, 10:23 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.1

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.1

remediation

0.0

relevance

0.5

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UTT 1250GW Buffer Overflow Vulnerability in formConfigApConfTemp

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating