UTT HiPER 810G Buffer Overflow Vulnerability in Remote Control Function
Vulnerability
A buffer overflow vulnerability has been identified in the UTT HiPER 810G router, affecting firmware versions through 1.7.7-171114. The vulnerability arises in the remote control function of the web management interface, specifically within the '/goform/formRemoteControl' endpoint. The issue is caused by the 'strcpy' function improperly handling input, leading to memory corruption. This vulnerability can be exploited remotely, potentially causing buffer overflow attacks and denial-of-service conditions.
Impact
Exploitation of this vulnerability leads to a buffer overflow, allowing for memory corruption. Such vulnerabilities can often be exploited to execute arbitrary code or cause a denial-of-service condition by crashing the device.
Reproduction
The vulnerability can be reproduced by sending a crafted POST request to the '/goform/formRemoteControl' endpoint. The request must include a 'Profile' parameter with a payload that exceeds the buffer size, exploiting the 'strcpy' function's lack of proper input validation. This can be done manually or with an automated script, such as one using Python's 'requests' library.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.