Primary

Context

UTT 1250GW Buffer Overflow Vulnerability in Channel Change Function

Vulnerability

A buffer overflow vulnerability has been identified in the UTT Jinqi 1250GW router, affecting firmware versions through v2v3.2.2-200710. The vulnerability arises in the '/goform/aspChangeChannel' function, where the 'pvid' parameter can be manipulated, leading to a buffer overflow. This issue can be exploited remotely, and a public exploit is available.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to arbitrary code execution or a denial-of-service condition on the device.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/goform/aspChangeChannel' endpoint. The request must include a 'pvid' parameter with a value that exceeds the buffer size, effectively causing the buffer overflow. This can be done by using the 'setApVlanId' value, which bypasses the initial validation and triggers the overflow when processed by the 'strcpy' function.

Added: Oct 7, 2025, 7:18 AM

Updated: Oct 7, 2025, 7:18 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.1

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

6.1

remediation

0.0

relevance

0.7

threat

6.4

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UTT 1250GW Buffer Overflow Vulnerability in Channel Change Function

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating