CVE-2023-24132

Vulnerability

A stack overflow vulnerability exists in the Jensen of Scandinavia Eagle 1200AC router running firmware version V15.03.06.33_en. The overflow occurs when the wepkey3_5g parameter is processed by the /goform/WifiBasicSet form handler. No authentication or special configuration is required for the vulnerable code path; the endpoint is reachable by any attacker who can send HTTP requests to the router's management interface.

Exploitation

An attacker must be on the same network as the router or have network access to its web management interface (typically on LAN or guest network). The attacker sends a crafted HTTP POST request to /goform/WifiBasicSet with an overly long value for the wepkey3_5g parameter, triggering a stack buffer overflow. No user interaction is required beyond the router processing the request.

Impact

Successful exploitation leads to stack overflow, which can corrupt memory. The attacker may achieve arbitrary code execution at the privilege level of the web server (likely root), leading to full device compromise, including the ability to modify network traffic, extract credentials, or use the device in a botnet.

Mitigation

No official patch or fixed version has been disclosed by Jensen of Scandinavia as of the publication date. The vendor website [1] does not provide updated firmware for this model. Administrators should restrict access to the router's web interface (e.g., disable remote management, use a firewall) and consider replacing the device if no update becomes available.