UTT HiPER 810G Buffer Overflow Vulnerability in Management Interface FormFireWall

A critical buffer overflow vulnerability has been identified in the UTT HiPER 810G router, specifically in versions through 1.7.7-171114. The issue arises in the management interface's formFireWall endpoint, where user-controlled input is improperly handled by the strcpy function, leading to memory corruption. This vulnerability can be exploited remotely, causing the device to crash or reboot, thereby creating a denial-of-service condition.

Impact

Exploitation of this vulnerability causes a remote denial-of-service condition by crashing the device or causing it to reboot. However, the buffer overflow could potentially be exploited further, depending on the device's memory layout and protection mechanisms.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/goform/formFireWall' endpoint with an excessively long 'GroupName' parameter. This request must include a valid 'Authorization' header with Digest authentication details.