CVE-2023-24124

Vulnerability

A stack overflow vulnerability exists in the wrlEn parameter of the /goform/WifiBasicSet endpoint in Jensen of Scandinavia Eagle 1200AC firmware version V15.03.06.33_en. The vulnerability is triggered when processing a specially crafted HTTP request to the vulnerable parameter, leading to a stack-based buffer overflow.

Exploitation

An attacker can exploit this vulnerability by sending a crafted HTTP POST request to the /goform/WifiBasicSet endpoint with an overly long wrlEn parameter. No authentication is required if the endpoint is exposed, but typically the router's web interface is accessible only from the local network. The attacker does not need prior access to the device.

Impact

Successful exploitation could lead to denial of service due to stack overflow, or potentially arbitrary code execution with the privileges of the web server process, which typically runs as root on embedded routers. This could allow full compromise of the device.

Mitigation

As of the publication date (2023-03-01), no official patch or firmware update has been released by Jensen of Scandinavia. Users should restrict access to the router's web interface to trusted networks and monitor for vendor updates. The device may be end-of-life; consider replacing it if no fix is provided.