Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of DNS responses. A crafted DNS message can trigger an overflow of a fixed-length, stack-based buffer. An attacker can leverage this vulnerability to execute code in the context of the root user. Was ZDI-CAN-9660.
CVSS Information
N/A
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
TP-Link Archer A7 AC1750 缓冲区错误漏洞
Vulnerability Description
TP-Link Archer A7 AC1750是中国普联(TP-Link)公司的一款无线路由器。 使用190726 AC1750版本固件的TP-Link Archer A7中对DNS响应的处理存在缓冲区错误漏洞。远程攻击者可借助特制的DNS消息利用该漏洞执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A