Missa

**Name of the Vulnerable Software and Affected Versions** UTT HiPER 1200GW versions prior to 2.5.3-170306 **Description** A stack-based buffer overflow occurs in the `/goform/formTaskEdit` file due to the improper use of the `strcpy()` function. This allows a remote attacker to cause a denial of service (DoS), which is a state where the system becomes unavailable to its intended users. **Recommendations** Update to a version later than 2.5.3-170306. As a temporary workaround, restrict access to the `/goform/formTaskEdit` endpoint to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** UTT HiPER 1200GW versions prior to 2.5.3-170306 **Description** A stack-based buffer overflow occurs in the `strcpy()` function within the `/goform/formFireWall` file. This issue is triggered by the manipulation of the `Profile` argument, allowing for remote exploitation. **Recommendations** Update to a version later than 2.5.3-170306. As a temporary workaround, restrict access to the `/goform/formFireWall` file or avoid using the `Profile` argument until a patch is applied.