Tenda AX-1803 Stack Overflow Vulnerability in SetSysTimeCfg Function Leading to Denial-of-Service

A stack overflow vulnerability has been identified in the Tenda AX-1803 router, specifically in version 1.0.0.1. The issue arises in the SetSysTimeCfg function, where the time parameter is processed without proper length validation. This flaw allows attackers to send crafted requests that trigger a stack overflow, causing a denial-of-service condition by crashing the router and disrupting its service availability.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the router to crash and fail to provide services correctly and persistently.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /goform/SetSysTimeCfg endpoint. The request must include a manually crafted time parameter that exceeds the buffer length, formatted to match the expected input. This can be done using a script that automates the request with the oversized time value.