CVE-2018-17022

Name of the Vulnerable Software and Affected Versions ASUS GT-AC5300 router versions through 3.0.0.4.384 32738

Description A stack-based buffer overflow issue allows remote attackers to cause a denial of service (device crash) or possibly have other unspecified impacts. This is achieved by setting a long sh path0 value and then sending an "appGet.cgi?hook=select list(Storage x SharedPath)" request. The ej select list function in router/httpd/web.c uses strcpy, which is vulnerable to this type of attack.

Recommendations For versions through 3.0.0.4.384 32738, as a temporary workaround, consider restricting access to the appGet.cgi endpoint until a patch is available. Avoid using long values for the sh path0 variable in the affected API endpoint until the issue is resolved.