UTT HiPER 1200GW Buffer Overflow Vulnerability in Web Host Filter Function

A critical buffer overflow vulnerability has been identified in the UTT HiPER 1200GW router, affecting firmware versions through 2.5.3-170306. The vulnerability arises in the '/goform/websHostFilter' file, where the 'strcpy' function is used to copy data without proper boundary checks. This flaw allows for remote exploitation, leading to potential buffer overflow attacks and denial-of-service conditions.

Impact

Exploitation of this vulnerability causes a buffer overflow, which can lead to arbitrary code execution or a denial-of-service condition on the device.

Reproduction

The vulnerability can be reproduced by sending a POST request to the '/goform/websHostFilter' endpoint. The request must include a payload that exceeds the buffer size, effectively exploiting the lack of input validation in the 'strcpy' function. This can be done by manipulating the 'addHostFilter' parameter with a sufficiently long string.