CVE-2018-19240

Name of the Vulnerable Software and Affected Versions TRENDnet TV-IP110WN versions 1.2.2 build 64 through 1.2.2 build 68 TRENDnet TV-IP110WN version 1.2.2.65 TRENDnet TV-IP121WN version 1.2.2 build 28

Description The issue allows attackers to hijack the control flow to any attacker-specified location by crafting a POST request payload without authentication. This is due to a buffer overflow in the network.cgi.

Recommendations For TRENDnet TV-IP110WN versions 1.2.2 build 64 through 1.2.2 build 68, consider restricting access to the network.cgi until a patch is available. For TRENDnet TV-IP110WN version 1.2.2.65, consider restricting access to the network.cgi until a patch is available. For TRENDnet TV-IP121WN version 1.2.2 build 28, consider restricting access to the network.cgi until a patch is available.