Linksys RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 Stack-Based Buffer Overflow Vulnerability

A stack-based buffer overflow vulnerability has been identified in Linksys RE6250, RE6300, RE6350, RE6500, RE7000, and RE9000 routers, all running specific firmware versions. The vulnerability arises in the 'portTriggerManageRule' function, where the 'triggerRuleName' and 'schedule' parameters are not properly validated, allowing remote attackers to send overly long input that overwrites the stack and can potentially be exploited to execute arbitrary code. This issue leads to a crash of the router, disrupting its normal service.

Impact

Exploitation of this vulnerability causes the router to crash, leading to a persistent denial of service where the device fails to function correctly or provide normal services.

Reproduction

To reproduce this vulnerability, send a POST request to '/goform/portTriggerManageRule' with the 'triggerRuleName' parameter filled with a long string. The excessive length of the input will cause the router to crash, demonstrating the buffer overflow condition.