UTT 进取 520W Buffer Overflow Vulnerability in Wireless Configuration
Vulnerability
A buffer overflow vulnerability has been identified in the UTT 进取 520W router, specifically in the firmware version 1.7.7-180627. The issue arises in the '/goform/ConfigWirelessBase' endpoint, where the 'strcpy' function is used to copy the 'ssid' parameter without proper size validation. This vulnerability can be exploited remotely, potentially leading to a denial-of-service condition.
Impact
Exploitation of this vulnerability causes a buffer overflow, which can be leveraged to execute arbitrary code or cause a denial-of-service condition by crashing the device.
Reproduction
The vulnerability can be reproduced by sending a POST request to the '/goform/ConfigWirelessBase' endpoint. The request must include a 'ssid' parameter with a payload that exceeds the buffer size, effectively causing a buffer overflow. This can be done using a web browser or a tool like curl, by including the necessary headers for authorization and content type.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.