Tenda WH450 Stack-Based Buffer Overflow Vulnerability in HTTP Request Handler
Vulnerability
A stack-based buffer overflow vulnerability has been identified in the Tenda WH450 router, specifically in the firmware version 1.0.0.18. The issue arises within the HTTP request handler for the '/goform/webExcptypemanFilte' endpoint. This vulnerability can be exploited remotely by unauthenticated attackers, potentially leading to arbitrary code execution or causing denial-of-service conditions. The buffer overflow is triggered by manipulating the 'page' parameter with excessively long input, exceeding the buffer's capacity.
Impact
Exploitation of this vulnerability allows for a stack-based buffer overflow, which can lead to arbitrary code execution or cause denial-of-service conditions on the affected device.
Reproduction
The vulnerability can be reproduced by sending a GET request to the '/goform/webExcptypemanFilte' endpoint with the 'page' parameter overloaded with data exceeding 256 bytes. This can be done using a script that automates the login process and sends the payload as part of the HTTP request.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.