Tenda PA6 Wi-Fi Powerline extender is a wireless network range extender from Tenda (China). A buffer overflow vulnerability exists in Tenda PA6 version 1.0.1.21, which originates from the groupName parameter of the cgiPortMapAdd function in the /portmap file that fails to correctly validate the length of the input data, and can be exploited by a remote attacker to execute arbitrary code on the system or cause a denial of service attack.