| Title | UTT (AiTai) Jinqi 512W <=v3v1.7.7-171114 Buffer Overflow |
|---|
| Description | A serious buffer overflow vulnerability exists in the UTT Jinqi 512W router. Attackers can trigger this vulnerability via the /goform/formWebAuthGlobalConfig interface. The parameter hidcontact is copied into memory using an unsafe function:
strcpy((char *)(InstPointByIndex_1 + 678), src_1);
Since strcpy performs no boundary checks, supplying an overly long hidcontact value results in memory corruption and subsequent DoS or instability. |
|---|
| Source | ⚠️ https://github.com/alc9700jmo/CVE/issues/21 |
|---|
| User | alc9700 (UID 79368) |
|---|
| Submission | 12/01/2025 13:54 (6 months ago) |
|---|
| Moderation | 12/12/2025 12:30 (11 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 336196 [UTT 进取 512W up to 1.7.7-171114 formWebAuthGlobalConfig hidcontact memory corruption] |
|---|
| Points | 20 |
|---|