Liwenqing

**Name of the Vulnerable Software and Affected Versions** UTT HiPER 2610G versions prior to 3.0.0-171107 **Description** A buffer overflow occurs in the `strcpy()` function within the `/goform/formNatStaticMap` file. This issue is triggered by manipulating the `NatBinds` argument. **Recommendations** Update to a version later than 3.0.0-171107. As a temporary workaround, restrict access to the `/goform/formNatStaticMap` endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** UTT HiPER 2610G versions prior to 3.0.0-171107 **Description** A remote buffer overflow can occur due to the use of the `strcpy()` function within the `/goform/formConfigDnsFilterGlobal` file. This issue is triggered by manipulating the `GroupName` argument. A buffer overflow is a condition where a program writes more data to a memory buffer than it can hold, potentially overwriting adjacent memory. **Recommendations** Update to a version later than 3.0.0-171107. As a temporary workaround, restrict access to the `/goform/formConfigDnsFilterGlobal` endpoint or avoid using the `GroupName` parameter until the update is applied.

**Name of the Vulnerable Software and Affected Versions** H3C Magic B0 versions up to 100R002 **Description** A weakness exists in H3C Magic B0 up to version 100R002. The issue involves the `EditWlanMacList` function within the `/goform/aspForm` file. Manipulation of the `param` argument can lead to a buffer overflow. Remote exploitation is possible, and the exploit has been publicly released. The vendor was notified but did not respond. **Recommendations** Versions up to 100R002: At the moment, there is no information about a newer version that contains a fix for this vulnerability.