Vulnerabilities > CVE-2019-6989 - Out-of-bounds Write vulnerability in Tp-Link Tl-Wr940N Firmware and Tl-Wr941Nd Firmware
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote authenticated attacker could overflow a buffer and execute arbitrary code on the system with elevated privileges.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 2 | |
| Hardware | 2 |
Common Weakness Enumeration (CWE)
Exploit-Db
| file | exploits/hardware/remote/46678.py |
| id | EDB-ID:46678 |
| last seen | 2019-04-09 |
| modified | 2019-04-09 |
| platform | hardware |
| port | 80 |
| published | 2019-04-09 |
| reporter | Exploit-DB |
| source | https://www.exploit-db.com/download/46678 |
| title | TP-LINK TL-WR940N / TL-WR941ND - Buffer Overflow |
| type | remote |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/152458/tplinktlwr940n-overflow.txt |
| id | PACKETSTORM:152458 |
| last seen | 2019-04-11 |
| published | 2019-04-09 |
| reporter | Grzegorz Wypych |
| source | https://packetstormsecurity.com/files/152458/TP-LINK-TL-WR940N-TL-WR941ND-Buffer-Overflow.html |
| title | TP-LINK TL-WR940N / TL-WR941ND Buffer Overflow |