Tenda F453 Buffer Overflow Vulnerability in P2P List Filter Function

A buffer overflow vulnerability has been identified in the Tenda F453 router, specifically in version 1.0.0.3. The issue arises in the 'httpd' component, within the 'fromP2pListFilter' function of the '/goform/P2pListFilter' file. The vulnerability is triggered by manipulating the 'page' argument, which leads to a stack-based buffer overflow. This flaw can be exploited remotely, potentially allowing for denial-of-service attacks or arbitrary code execution.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to stack corruption. This type of memory corruption vulnerability is commonly exploited to execute arbitrary code with the privileges of the vulnerable process. Additionally, such vulnerabilities can often be used to create a denial-of-service condition, causing the device to become unresponsive or to crash.

Reproduction

The vulnerability can be reproduced by sending a POST request to '/goform/P2pListFilter' with a 'page' parameter that contains a long string. The 'httpd' component will process this request, leading to a buffer overflow by overwriting the stack with the excess data.