| Titel | UTT (AiTai) Jinqi 512W <=v3v1.7.7-171114 Buffer Overflow |
|---|
| Beschreibung | A serious buffer overflow vulnerability exists in the UTT Jinqi 512W router. Attackers can trigger this vulnerability via the /goform/formWebAuthGlobalConfig interface. The parameter hidcontact is copied into memory using an unsafe function:
strcpy((char *)(InstPointByIndex_1 + 678), src_1);
Since strcpy performs no boundary checks, supplying an overly long hidcontact value results in memory corruption and subsequent DoS or instability. |
|---|
| Quelle | ⚠️ https://github.com/alc9700jmo/CVE/issues/21 |
|---|
| Benutzer | alc9700 (UID 79368) |
|---|
| Einreichung | 01.12.2025 13:54 (vor 6 Monaten) |
|---|
| Moderieren | 12.12.2025 12:30 (11 days later) |
|---|
| Status | Akzeptiert |
|---|
| VulDB Eintrag | 336196 [UTT 进取 512W bis 1.7.7-171114 formWebAuthGlobalConfig hidcontact Pufferüberlauf] |
|---|
| Punkte | 20 |
|---|