Belkin Vulnerability Vendor: Belkin Product: F9K1122 Version: 1.00.33 Type: Stack Overflow Author: Jiaqian Peng Institution: Institute of Information Engineering, Chinese Academy of Sciences (IIE, CAS) Vulnerability Description We found a stack overflow vulnerability in the Belkin router with firmware version 1.00.33, which allows remote attackers to crash the server. Stack Overflow In the function, the parameter is directly passed by the attacker. If this part of the data is too long, it will cause a stack overflow, allowing the attacker to control the and execute arbitrary code. The input has not been checked, and the is directly copied to a local variable on the stack, overriding the return address of the function and causing buffer overflow. PoC We set as , and the router will crash: Result The target router crashes and cannot provide services correctly and persistently.