CVE-2023-24125

Vulnerability

A stack overflow vulnerability exists in the wepkey2_5g parameter of the WifiBasicSet form handler on the Jensen of Scandinavia Eagle 1200AC router running firmware version V15.03.06.33_en. The flaw occurs when the device processes a specially crafted request without proper bounds checking, allowing adjacent or remote attackers to overflow a stack buffer [1].

Exploitation

An attacker must be able to send crafted HTTP requests to the router's administrative web interface. No authentication is required if the management interface is exposed; otherwise, authenticated access may be needed. By manipulating the wepkey2_5g parameter beyond its expected length, the attacker triggers the stack overflow [1]. The attack can be performed over a local network or remotely if the router's web interface is accessible from the internet.

Impact

Successful exploitation can lead to denial of service due to a crash or, if the payload is carefully constructed, arbitrary code execution with the privileges of the web server process. This could allow an attacker to gain full control of the affected router, potentially leading to further compromise of connected devices and network traffic interception [1].

Mitigation

As of the publication date, no fixed firmware version has been released by Jensen of Scandinavia. Users should restrict remote access to the router's management interface and monitor for official updates. The router may be end-of-life; consideration should be given to replacing the device if no patch becomes available [1].