A security flaw has been discovered in UTT HiPER 1200GW up to 2.5.3-170306. This impacts the function strcpy of the file /goform/setSysAdm of the component Web …

A buffer overflow vulnerability has been discovered in UTT HiPER 1200GW router firmware up to version 2.5.3-170306. The flaw affects the strcpy function in the /goform/setSysAdm file of the Web Management Interface component. Attackers can exploit this vulnerability by manipulating the sysAdmUser and sysAdmPass arguments, leading to buffer overflow conditions. The vulnerability can be exploited remotely, and public exploit code has been released. This makes the vulnerability particularly dangerous as it can be leveraged by threat actors for remote attacks against affected devices.