N/A

The TRENDnet TI-PG1284i switch(hw v2.0R) prior to version 2.0.2.S0 suffers from a null pointer dereference vulnerability. This vulnerability exists in its lldp related component. Due to fail to check if ChassisID TLV is contained in the packet, by sending a crafted lldp packet to the device, an attacker can crash the process due to null pointer dereference.

N/A

N/A

TRENDnet TI-PG1284i 代码问题漏洞

TRENDnet TI-PG Series是美国趋势网络（TRENDnet）公司的一系列交换机。 TRENDnet TI-PG1284i 2.0.2.S0 之前版本存在安全漏洞，该漏洞源于其 lldp 相关组件中空指针取消引用。攻击者利用该漏洞可通过向设备发送精心制作的 lldp 数据包而使进程崩溃。

N/A

N/A