| Title | Belkin F9K1122 1.00.33 Stack-based Buffer Overflow |
|---|
| Description | We found an stack overflow vulnerability in Belkin router with firmware which was released recently, allows remote attackers to crash the server.In the router's formWlanMP function, ateFunc、ateGain、ateTxCount、ateChan、ateRate、ateMacID、e2pTxPower1、e2pTxPower2、e2pTxPower3、e2pTxPower4、e2pTxPower5、e2pTxPower6、e2pTxPower7、e2pTx2Power1、e2pTx2Power2、e2pTx2Power3、e2pTx2Power4、e2pTx2Power5、e2pTx2Power6、e2pTx2Power7、ateTxFreqOffset、ateMode、ateBW、ateAntenna、e2pTxFreqOffset、e2pTxPwDeltaB、e2pTxPwDeltaG、e2pTxPwDeltaMix、e2pTxPwDeltaN、readE2P is directly passed by the attacker, If this part of the data is too long, it will cause the stack overflow, so we can control the ateFunc、ateGain、ateTxCount、ateChan、ateRate、ateMacID、e2pTxPower1、e2pTxPower2、e2pTxPower3、e2pTxPower4、e2pTxPower5、e2pTxPower6、e2pTxPower7、e2pTx2Power1、e2pTx2Power2、e2pTx2Power3、e2pTx2Power4、e2pTx2Power5、e2pTx2Power6、e2pTx2Power7、ateTxFreqOffset、ateMode、ateBW、ateAntenna、e2pTxFreqOffset、e2pTxPwDeltaB、e2pTxPwDeltaG、e2pTxPwDeltaMix、e2pTxPwDeltaN、readE2P to execute arbitrary code. |
|---|
| Source | ⚠️ https://github.com/wudipjq/my_vuln/blob/main/Belkin/vuln_11/11.md |
|---|
| User | pjqwudi (UID 85106) |
|---|
| Submission | 06/25/2025 10:36 (10 months ago) |
|---|
| Moderation | 07/05/2025 17:25 (10 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 315006 [Belkin F9K1122 1.00.33 webs /goform/formWlanMP stack-based overflow] |
|---|
| Points | 20 |
|---|