Vulnerabilities > CVE-2021-27246 - Stack-based Buffer Overflow vulnerability in Tp-Link Ac1750 Firmware 1.0.15

CVSS 8.0 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

tp-link

CWE-121

NVD

Published: 2021-04-14

Updated: 2021-04-22

Summary

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Archer A7 AC1750 1.0.15 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of MAC addresses by the tdpServer endpoint. A crafted TCP message can write stack pointers to the stack. An attacker can leverage this vulnerability to execute code in the context of the root user. Was ZDI-CAN-12306.

Vulnerable Configurations

Part	Description	Count
OS	Tp-Link TP Link Ac1750 Firmware 1.0.15	1
Hardware	Tp-Link TP Link Ac1750 A7	1

Common Weakness Enumeration (CWE)

CWE-121 - Stack-based Buffer Overflow

References

https://www.zerodayinitiative.com/advisories/ZDI-21-215/