Primary

Context

UTT HiPER 1200GW Stack-Based Buffer Overflow Vulnerability in formTaskEdit

Vulnerability

A stack-based buffer overflow vulnerability has been identified in the UTT HiPER 1200GW router, affecting firmware versions through 2.5.3-170306. The vulnerability arises in the strcpy function within the file /goform/formTaskEdit, where improper boundary checks allow for buffer overflow attacks. This issue can be exploited remotely, potentially leading to denial-of-service conditions.

Impact

Exploitation of this vulnerability causes a stack-based buffer overflow, which can lead to arbitrary code execution or a denial-of-service condition.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /goform/formTaskEdit endpoint. The request must include a 'selDateType' parameter with a value that exceeds the buffer limit, bypassing any boundary checks and causing a stack-based buffer overflow.

Added: Jun 1, 2026, 10:26 PM

Updated: Jun 1, 2026, 10:26 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.0

remediation

0.0

relevance

9.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

8.0

remediation

0.0

relevance

9.7

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

UTT HiPER 1200GW Stack-Based Buffer Overflow Vulnerability in formTaskEdit

Vulnerability

Impact

Reproduction

Affected Products

UTT HiPER 1200GW

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating