A critical remote stack-based buffer overflow in the Totolink N300RH router allows unauthenticated attackers to achieve remote code execution.

The vulnerability is located in the setWiFiBasicConfig function within wireless.so of the Web Management Interface. An attacker can trigger a stack-based buffer overflow by sending a specially crafted KeyStr argument, which can lead to remote code execution.

With a CVSS score of 9.8, this vulnerability represents an extreme risk to network security. Successful exploitation allows for complete takeover of the router, potentially enabling an attacker to intercept traffic, conduct man-in-the-middle attacks, or use the device as a pivot point into the internal network.

Immediate Action: Update the firmware of the Totolink N300RH to the latest available version provided by the manufacturer.

Proactive Monitoring: Monitor network traffic for anomalous behavior originating from the management interface or unexpected outbound connections from the router.

Compensating Controls: Restrict access to the device's web management interface to trusted management IP addresses or disable remote administration entirely.

Public Exploit Available: true

This vulnerability is critical and requires immediate attention. Due to the availability of public exploits and the high severity, affected devices should be isolated from the internet immediately until firmware updates are applied.