2 matches found
CVE-2020-14079
TRENDnet TEW-827DRU devices through 2.06B04 contain a stack-based buffer overflow in the ssi binary. The overflow allows an authenticated user to execute arbitrary code by POSTing to apply.cgi via the action autoupfw or autouplp with a sufficiently long updatefilename key...
CVE-2020-14079
TRENDnet TEW-827DRU routers (firmware up to 2.06B04) are affected by a stack-based overflow in the ssi binary. An authenticated user can trigger arbitrary code execution by sending a crafted update_file_name via POST to apply.cgi with action auto_up_fw (or auto_up_lp). The vulnerability affects t...