UTT HiPER 810G Buffer Overflow Vulnerability in formP2PLimitConfig
Vulnerability
A buffer overflow vulnerability has been identified in the UTT HiPER 810G router, specifically in firmware versions through 1.7.7-171114. The issue arises in the formP2PLimitConfig endpoint, where the strcpy function is used to copy data from the 'except' parameter without proper size validation. This flaw allows for remote exploitation, potentially leading to arbitrary code execution or a denial-of-service condition.
Impact
Exploitation of this vulnerability causes a buffer overflow, which can lead to memory corruption. This type of vulnerability is often exploited to execute arbitrary code or cause a denial-of-service condition by crashing the device.
Reproduction
The vulnerability can be reproduced by sending a POST request to the /goform/formP2PLimitConfig endpoint. The request must include a 'Content-Type' of 'application/x-www-form-urlencoded' and an 'Authorization' header with a valid Digest authentication. The 'except' parameter should be populated with a payload that exceeds the buffer size, triggering the overflow.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.