CVE-2023-45464

Vulnerability

A buffer overflow vulnerability exists in the servDomain parameter of the Netis N3Mv2 router firmware version V1.0.1.865. The improper handling of crafted input in this field leads to a buffer overflow, which can be triggered by sending a specially crafted request. The affected firmware is available from the manufacturer's website, and the vulnerability affects the specific build 865 [1].

Exploitation

An attacker can exploit this vulnerability by sending a crafted input to the servDomain parameter. No authentication is required, and the attacker can be on the local network or remotely if the management interface is exposed. The crafted input causes a buffer overflow, which leads to the router becoming unresponsive. A proof-of-concept video is referenced by the discoverer [1].

Impact

Successful exploitation results in a Denial of Service (DoS) condition. The router stops functioning, causing network disruption for all connected devices. This effectively disables the router until it is manually rebooted. The vulnerability does not directly lead to code execution or information disclosure based on the available references [1].

Mitigation

As of the publication date (2023-10-13), no official patch or fixed version has been released by Netis. Users are advised to monitor the vendor's website for firmware updates. As a workaround, restrict access to the router's management interface to trusted networks only, and ensure the interface is not exposed to the internet. No workaround within the firmware itself is documented [1].