TP-Link TL-WR841N V10 Buffer Copy without Checking Size of Input (‘Classic Buffer Overflow’) Vulnerability

Summary

A buffer overflow in the httpd daemon on TP-Link TL-WR841N V10 (firmware version 3.16.9) devices.

 

Credit:

The information has been provided by Vendor

The original article can be found at:https://www.tp-link.com/us/security


Details

Allows an authenticated remote attacker to execute arbitrary code via a GET request to the page for the configuration of the Wi-Fi network.

 

Vulnerable Systems:

TP-Link TL-WR841N V10

 

CVE Information:

CVE-2020-8423

 

Disclosure Timeline:
Published Date:4/2/2020

Categories: FeaturedNews