Belkin F9K1122 Stack-Based Buffer Overflow Vulnerability

A critical stack-based buffer overflow vulnerability has been identified in the Belkin F9K1122 router running firmware version 1.00.33. The issue arises in the 'formWlanMP' function within the '/goform/formWlanMP' file, where several arguments can be manipulated by an attacker. This vulnerability can be exploited remotely, allowing for potential arbitrary code execution.

Impact

Exploitation of this vulnerability leads to a stack-based buffer overflow, which can commonly be used to execute arbitrary code.

Reproduction

To reproduce this vulnerability, send a request to the '/goform/formWlanMP' endpoint with overly long values for the 'ateFunc', 'ateGain', 'ateTxCount', 'ateChan', 'ateRate', 'ateMacID', 'e2pTxPower1' through 'e2pTxPower7', 'e2pTx2Power1' through 'e2pTx2Power7', 'ateTxFreqOffset', 'ateMode', 'ateBW', 'ateAntenna', 'e2pTxFreqOffset', 'e2pTxPwDeltaB', 'e2pTxPwDeltaG', 'e2pTxPwDeltaMix', 'e2pTxPwDeltaN', and 'readE2P' arguments. The excessive length will cause a buffer overflow on the stack, potentially leading to arbitrary code execution.