TRENDnet TEW-432BRP Stack-Based Buffer Overflow Vulnerability Allowing Remote Code Execution

A stack-based buffer overflow vulnerability has been identified in the TRENDnet TEW-432BRP router, specifically in version 3.10B20. The issue arises in the 'formSetDomainFilter' function within the '/goform/formSetDomainFilter' file. The vulnerability can be exploited remotely by manipulating the 'blocked_domain', 'permitted_domain', 'blocked_domain_list', or 'permitted_domain_list' arguments. The lack of input validation allows for excessive data to overwrite the stack, potentially leading to arbitrary code execution. This vulnerability affects a product that has been end-of-life since 2009 and is no longer supported by the vendor.

Impact

Exploitation of this vulnerability causes the router to crash, disrupting services and causing a persistent denial-of-service condition.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/goform/formSetDomainFilter' with an excessively long 'blocked_domain_list' parameter. This overloads the stack, crashes the router, and disrupts its normal functioning.