TP Link Wr940N Routers Buffer Overflow (CVE-2017-13772)

A buffer overflow vulnerability exists in TP Link Wr940N Firmware. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes...

TP-Link WDR4300 - Remote Code Execution (Authenticated) Exploit

Exploit Title: TP-Link WDR4300 - Remote Code Execution Authenticated Date: 2020-08-28 Exploit Author: Patrik Lantz Vendor Homepage: https://www.tp-link.com/se/home-networking/wifi-router/tl-wdr4300/ Version: TL-WDR4300, N750 Wireless Dual Band Gigabit Router Tested on: Firmware version 3.13.33 an...

TP-Link WDR4300 - Remote Code Execution (Authenticated)

Exploit Title: TP-Link WDR4300 - Remote Code Execution Authenticated Date: 2020-08-28 Exploit Author: Patrik Lantz Vendor Homepage: https://www.tp-link.com/se/home-networking/wifi-router/tl-wdr4300/ Version: TL-WDR4300, N750 Wireless Dual Band Gigabit Router Tested on: Firmware version 3.13.33 an...

TP-Link WDR4300 Remote Code Execution Exploit

TP-Link WDR4300 with firmware versions 3.13.33 and 3.14.3 post-authentication remote code execution exploit. !/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using...

TP-Link WDR4300 Remote Code Execution

!/usr/bin/python3 import sys import hashlib import base64 import requests import binascii import socket """ RCE via stack-based overflow on TP-Link WDR4300 N750 devices, using CVE-2017-13772. Tested on Firmware versions 3.13.33, Build 130618 and 3.14.3 Build 150518, hardware WDR4300 v1 Usage: 1...

TPLINK TLWR740N路由器远程代码执行漏洞(CVE-2017-13772)

INTRODUCTION In October of 2017 we disclosed multiple vulnerabilities in TP-Link’s WR940n router that occurred due to multiple code paths calling strcpy on user controllable unsanitised input CVE-2017-13772 The httpd binary responsible for these vulnerabilities contained patterns of code that...

CVE-2017-13772

Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the 1 pingaddr parameter to PingIframeRpm.htm or 2 dnsserver2 parameter to WanStaticIpV6CfgRpm.htm...

CVE-2017-13772

Summary (from provided sources): CVE-2017-13772 is a stack-based buffer overflow vulnerability in TP-Link WR940N routers (hardware version 4) that allows remote authenticated code execution via GET parameters, specifically ping_addr in PingIframeRpm.htm or dnsserver2 in WanStaticIpV6CfgRpm.htm. C...

CVE-2017-13772

creationtimestamp| type| source ---|---|--- 2017-10-20 01:45:46+00:00| published-proof-of-concept| https://t.me/canyoupwnme/2470 2017-10-21 22:54:49+00:00| published-proof-of-concept| https://t.me/informationsecuritychannel/10230...