CVE-2022-25062 PoC — Tp-link TL-WR840N 输入验证错误漏洞

Source

https://github.com/exploitwritter/CVE-2022-25062

Associated Vulnerability

Title:Tp-link TL-WR840N 输入验证错误漏洞 (CVE-2022-25062)
Description:Tp-link TL-WR840N是中国普联（Tp-link）公司的一款无线路由器。 TP-LINK TL-WR840N(ES)_V6.20_180709存在输入验证错误漏洞，该漏洞源于函数dm_checkString包含整数溢出。攻击者可利用该漏洞通过特制的HTTP请求造成拒绝服务（DoS）。

Description

This script exploits a vulnerability (IoF) in the TPLink WR840N router, using a field for injecting code in the module DNS.

Readme

# CVE-2022-25062
This script exploits a vulnerability (IoF) in the TPLink WR840N router, using a field for injecting code in the module DNS.

File Snapshot


 [4.0K]  /data/pocs/0f308e980ac20600f41441bd18f524ea2c7f9826
├── [5.0K]  CVE-2022-25062.py
└── [ 141]  README.md

0 directories, 2 files

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!