CMD_SET_CONFIG_COUNTRY in the TP-Link Device Debug protocol in TP-Link Archer C1200 1.0.0 Build 20180502 rel.45702 and earlier is prone to a stack-based buffer overflow, which allows a remote attacker to achieve code execution or denial of service by sending a crafted payload to the listening server.
References
Link | Resource |
---|---|
https://fakhrizulkifli.github.io/posts/2019/07/15/CVE-2019-13614/ | Exploit Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Information
Published : 2019-07-17 11:15
Updated : 2020-08-24 10:37
NVD link : CVE-2019-13614
Mitre link : CVE-2019-13614
JSON object : View
CWE
CWE-787
Out-of-bounds Write
Products Affected
tp-link
- archer_c1200_firmware
- archer_c1200