CDATA FD614GS3-R850 Buffer Overflow Vulnerability Allowing Arbitrary Code Execution

A buffer overflow vulnerability has been identified in the CDATA FD614GS3-R850 router, specifically in the web management interface. This vulnerability, present in firmware version V3.2.7_P161006 (Build.0333.250211), allows an attacker to execute arbitrary code by exploiting stack-based buffer overflows. The issue arises from the 'node_mac', 'node_opt', 'opt_param', and 'domainblk' parameters within the 'mesh_node_config' and 'domainblk_config' modules. Additionally, the device lacks proper Cross-Site Request Forgery (CSRF) protection, enabling remote exploitation through a malicious link.

Impact

Exploitation of this vulnerability leads to remote code execution on the affected device.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/post.json' with a payload that includes the vulnerable parameters. This can be done using a tool like Python's 'requests' library. The absence of CSRF protection allows this exploit to be executed without user interaction, by embedding the payload in a webpage that an authenticated user would visit.