CVE-2019-6989

Name of the Vulnerable Software and Affected Versions TP-Link TL-WR940N version not specified TP-Link TL-WR941ND version not specified

Description The issue is caused by a stack-based buffer overflow due to improper bounds checking by the ipAddrDispose function. This can be exploited by sending specially crafted ICMP echo request packets, allowing a remote authenticated attacker to overflow a buffer and execute arbitrary code on the system with elevated privileges.

Recommendations For TP-Link TL-WR940N, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For TP-Link TL-WR941ND, at the moment, there is no information about a newer version that contains a fix for this vulnerability.