Gange666

**Name of the Vulnerable Software and Affected Versions** picoTCP version 1.7.0 picoTCP-NG version 2.1 **Description** The issue is related to a Double Free vulnerability in the pico fragments.c module, specifically in the `pico fragments reassemble` function. This vulnerability allows attackers to execute arbitrary code. **Recommendations** For picoTCP version 1.7.0, consider disabling the `pico fragments reassemble` function until a patch is available. For picoTCP-NG version 2.1, restrict access to the modules/pico fragments.c module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WDR7660 version 2.0.30 Mercury D196G version 20200109 2.0.4 Fast FAC1900R version 20190827 2.0.2 **Description** The issue is a stack overflow in the `MmtAtePrase` function, which could allow local users to achieve remote code execution. **Recommendations** For TP-Link TL-WDR7660 version 2.0.30, consider disabling the `MmtAtePrase` function until a patch is available. For Mercury D196G version 20200109 2.0.4, consider disabling the `MmtAtePrase` function until a patch is available. For Fast FAC1900R version 20190827 2.0.2, consider disabling the `MmtAtePrase` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WDR7660 version 2.0.30 Mercury D196G version 20200109 2.0.4 Fast FAC1900R version 20190827 2.0.2 **Description** The issue is a stack overflow in the `MntAte` function, which could allow local users to achieve remote code execution. **Recommendations** For TP-Link TL-WDR7660 version 2.0.30, consider disabling the `MntAte` function until a patch is available. For Mercury D196G version 20200109 2.0.4, consider disabling the `MntAte` function until a patch is available. For Fast FAC1900R version 20190827 2.0.2, consider disabling the `MntAte` function until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.