CVE-2019-11417

system.cgi on TRENDnet TV-IP110WN cameras has a buffer overflow caused by an inadequate source-length check before a strcpy operation in the respondAsp function. Attackers can exploit the vulnerability by using the languse parameter with a long string. This affects 1.2.2 build 28, 64, 65, and 68.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:trendnet:tv-ip110wn_firmware:1.2.2.28:*:*:*:*:*:*:*
cpe:2.3:o:trendnet:tv-ip110wn_firmware:1.2.2.65:*:*:*:*:*:*:*
cpe:2.3:o:trendnet:tv-ip110wn_firmware:1.2.2.68:*:*:*:*:*:*:*
cpe:2.3:o:trendnet:tv-ip110wn_firmware:1.2.2.64:*:*:*:*:*:*:*
cpe:2.3:h:trendnet:tv-ip110wn:-:*:*:*:*:*:*:*

Information

Published : 2019-04-22 04:29

Updated : 2021-07-21 04:39


NVD link : CVE-2019-11417

Mitre link : CVE-2019-11417


JSON object : View

CWE
CWE-787

Out-of-bounds Write

CWE-20

Improper Input Validation

Advertisement

dedicated server usa

Products Affected

trendnet

  • tv-ip110wn
  • tv-ip110wn_firmware