Sign-up

ID

VAR-201710-1271


CVE

CVE-2017-13772


TITLE

TP-Link WR940N WiFi Router buffer error vulnerability

Trust: 1.4

sources: JVNDB: JVNDB-2017-009764 // CNNVD: CNNVD-201709-053

DESCRIPTION

Multiple stack-based buffer overflows in TP-Link WR940N WiFi routers with hardware version 4 allow remote authenticated users to execute arbitrary code via the (1) ping_addr parameter to PingIframeRpm.htm or (2) dnsserver2 parameter to WanStaticIpV6CfgRpm.htm. TP-Link WR940N WiFi The router contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. TP-Link WR940N is a SOHO wireless router. TP-Link WR940N has a remote code execution vulnerability

Trust: 2.34

sources: NVD: CVE-2017-13772 // JVNDB: JVNDB-2017-009764 // CNVD: CNVD-2017-35153 // VULHUB: VHN-104428 // VULMON: CVE-2017-13772

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-35153

AFFECTED PRODUCTS

vendor:tp linkmodel:wr940nscope:eqversion: -

Trust: 1.6

vendor:tp linkmodel:wr940nscope: - version: -

Trust: 0.8

vendor:tp linkmodel:wr940n wifi routersscope:eqversion:4

Trust: 0.6

sources: CNVD: CNVD-2017-35153 // JVNDB: JVNDB-2017-009764 // CNNVD: CNNVD-201709-053 // NVD: CVE-2017-13772

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-13772
value: HIGH

Trust: 1.0

NVD: CVE-2017-13772
value: HIGH

Trust: 0.8

CNVD: CNVD-2017-35153
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201709-053
value: HIGH

Trust: 0.6

VULHUB: VHN-104428
value: HIGH

Trust: 0.1

VULMON: CVE-2017-13772
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2017-13772
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

CNVD: CNVD-2017-35153
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-104428
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-13772
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2017-35153 // VULHUB: VHN-104428 // VULMON: CVE-2017-13772 // JVNDB: JVNDB-2017-009764 // CNNVD: CNNVD-201709-053 // NVD: CVE-2017-13772

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-104428 // JVNDB: JVNDB-2017-009764 // NVD: CVE-2017-13772

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201709-053

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201709-053

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-009764

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-104428 // 
            
            
            
            VULMON: CVE-2017-13772

PATCH
title:TL-WR940Nurl:http://www.tp-link.jp/products/details/cat-9_TL-WR940N.html
Trust: 0.8
title:Patch for TP-Link WR940N remote code execution vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/106839
Trust: 0.6
title:TP-Link WR940N WiFi Repair measures for router buffer error vulnerabilityurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=127158
Trust: 0.6
title:The Registerurl:https://www.theregister.co.uk/2018/04/28/security_roundup/
Trust: 0.2
title:MiraiSecurityurl:https://github.com/pandazheng/MiraiSecurity 
Trust: 0.1
title: - url:https://github.com/CPSeek/CPSeeker 
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-35153 // 
            
            
            
            VULMON: CVE-2017-13772 // 
            
            
            
            JVNDB: JVNDB-2017-009764 // 
            
            
            
            CNNVD: CNNVD-201709-053

EXTERNAL IDS
db:NVDid:CVE-2017-13772
Trust: 3.2
db:EXPLOIT-DBid:43022
Trust: 2.4
db:PACKETSTORMid:158999
Trust: 1.8
db:JVNDBid:JVNDB-2017-009764
Trust: 0.8
db:CNNVDid:CNNVD-201709-053
Trust: 0.7
db:CNVDid:CNVD-2017-35153
Trust: 0.6
db:EXPLOIT-DBid:48994
Trust: 0.6
db:CXSECURITYid:WLB-2020080156
Trust: 0.6
db:PACKETSTORMid:144691
Trust: 0.1
db:SEEBUGid:SSVID-96771
Trust: 0.1
db:VULHUBid:VHN-104428
Trust: 0.1
db:VULMONid:CVE-2017-13772
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-35153 // 
            
            
            
            VULHUB: VHN-104428 // 
            
            
            
            VULMON: CVE-2017-13772 // 
            
            
            
            JVNDB: JVNDB-2017-009764 // 
            
            
            
            CNNVD: CNNVD-201709-053 // 
            
            
            
            NVD: CVE-2017-13772

REFERENCES
url:https://www.fidusinfosec.com/tp-link-remote-code-execution-cve-2017-13772/
Trust: 2.6
url:https://www.exploit-db.com/exploits/43022/
Trust: 2.5
url:http://packetstormsecurity.com/files/158999/tp-link-wdr4300-remote-code-execution.html
Trust: 2.4
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-13772
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-13772
Trust: 0.8
url:http://seclists.org/fulldisclosure/2017/oct/49
Trust: 0.6
url:https://cxsecurity.com/issue/wlb-2020080156
Trust: 0.6
url:https://www.exploit-db.com/exploits/48994
Trust: 0.6
url:https://cwe.mitre.org/data/definitions/119.html
Trust: 0.1
url:https://nvd.nist.gov
Trust: 0.1
url:https://github.com/pandazheng/miraisecurity
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-35153 // 
            
            
            
            VULHUB: VHN-104428 // 
            
            
            
            VULMON: CVE-2017-13772 // 
            
            
            
            JVNDB: JVNDB-2017-009764 // 
            
            
            
            CNNVD: CNNVD-201709-053 // 
            
            
            
            NVD: CVE-2017-13772

CREDITS
Patrik Lantz
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201709-053

SOURCES
db:CNVDid:CNVD-2017-35153
db:VULHUBid:VHN-104428
db:VULMONid:CVE-2017-13772
db:JVNDBid:JVNDB-2017-009764
db:CNNVDid:CNNVD-201709-053
db:NVDid:CVE-2017-13772

LAST UPDATE DATE
2024-11-23T22:56:04.335000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-35153date:2020-09-24T00:00:00
db:VULHUBid:VHN-104428date:2020-08-31T00:00:00
db:VULMONid:CVE-2017-13772date:2020-08-31T00:00:00
db:JVNDBid:JVNDB-2017-009764date:2017-11-21T00:00:00
db:CNNVDid:CNNVD-201709-053date:2020-11-06T00:00:00
db:NVDid:CVE-2017-13772date:2024-11-21T03:11:38.270

SOURCES RELEASE DATE
db:CNVDid:CNVD-2017-35153date:2017-11-27T00:00:00
db:VULHUBid:VHN-104428date:2017-10-23T00:00:00
db:VULMONid:CVE-2017-13772date:2017-10-23T00:00:00
db:JVNDBid:JVNDB-2017-009764date:2017-11-21T00:00:00
db:CNNVDid:CNNVD-201709-053date:2017-08-30T00:00:00
db:NVDid:CVE-2017-13772date:2017-10-23T18:29:00.883