Submit #703620: UTT / 艾泰 Aggressive 512W <= v3.1.7.7-171114 Buffer Overflow / Memory Corruptioninfo

TitleUTT / 艾泰 Aggressive 512W <= v3.1.7.7-171114 Buffer Overflow / Memory Corruption
Description A remote buffer overflow vulnerability exists in the UTT Aggressive 512W router's /goform/formNatStaticMap endpoint. When the "Action" parameter is not set, the application uses an unsafe strcpy() function to copy the "NatBind" parameter into a fixed-size buffer without proper bounds checking. An unauthenticated remote attacker can exploit this vulnerability by sending a specially crafted POST request with an oversized NatBind parameter value, leading to buffer overflow, memory corruption, and denial of service.
Source⚠️ https://github.com/maximdevere/CVE2/issues/6
User
 MaximDeVere (UID 89915)
Submission11/30/2025 04:03 (7 months ago)
Moderation12/11/2025 11:36 (11 days later)
StatusAccepted
VulDB entry335873 [UTT 进取 512W up to 3.1.7.7-171114 Endpoint /goform/formNatStaticMap strcpy NatBind buffer overflow]
Points20

PreviousOverviewNext

Do you want to use VulDB in your project?

Use the official API to access entries easily!