UTT Aggressive HiPER 1200GW Buffer Overflow Vulnerability in formConfigDnsFilterGlobal Function Allowing Denial-of-Service

A buffer overflow vulnerability has been identified in the UTT Aggressive HiPER 1200GW router, specifically in firmware versions through v2.5.3-170306. The issue arises in the timeRangeName parameter of the formConfigDnsFilterGlobal function, where improper input handling allows attackers to manipulate the buffer. This vulnerability can be exploited to cause a denial-of-service condition by sending crafted input that triggers the overflow.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the device to become unresponsive or unavailable.

Reproduction

The vulnerability can be reproduced by sending a POST request to the /goform/formConfigDnsFilterGlobal endpoint. The request must include a 'sourceIP' parameter set to 'ipRange' and a 'timeRangeName' parameter containing a long string of characters. This unbounded input in the 'timeRangeName' parameter causes the buffer overflow.