2 matches found
CVE-2021-35003
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer C90 1.0.6 Build 20200114 rel.731645553 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. A crafted D...
CVE-2021-35003
The CVE-2021-35003 vulnerability affects TP-Link Archer C90 routers (1.0.6 Build 20200114 rel.73164(5553)). A flaw in DNS response handling allows a crafted DNS message to overflow a fixed-length, stack-based buffer, enabling remote code execution with root privileges without authentication. Mult...