Lbp

Name of the Vulnerable Software and Affected Versions: D-Link DIR-816 A2 version 1.11 Description: The issue allows an attacker to edit the system account without authentication by exploiting the fact that the router only checks the random token when authorizing a goform request. The token can be obtained from dir login.asp and then used in the API endpoint "/goform/form2userconfig.cgi" to make unauthorized changes. Recommendations: For D-Link DIR-816 A2 version 1.11, as a temporary workaround, consider restricting access to the "/goform/form2userconfig.cgi" API endpoint until a patch is available. Avoid using the obtained token from dir login.asp for authentication in the goform request. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N version 7.0 1.1.0 **Description** The issue allows remote attackers to cause a denial of service, specifically a Tlb Load Exception, by sending crafted DNS packets to port 53/udp. **Recommendations** For TP-Link TL-WR886N version 7.0 1.1.0, consider restricting access to port 53/udp to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for firewall lan manage mac2. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the lan manage mac2 firewall configuration to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the wireless `wlan wds 2g` ssid. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the wireless configuration to prevent exploitation until a patch is available. As a temporary workaround, limit the length of JSON data accepted for the `wlan wds 2g` ssid to prevent service crashes.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for wireless `wlan host 2g` power. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the wireless configuration API to prevent exploitation. As a temporary workaround, consider disabling the wireless `wlan host 2g` power configuration option until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for wireless `wlan host 2g` isolate. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the wireless configuration to prevent exploitation. As a temporary workaround, consider disabling the `wlan host 2g` isolate feature until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for wireless wlan host 2g bandwidth. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the wireless configuration until a patch is available. As a temporary workaround, limit the length of JSON data for `wlan host 2g` bandwidth to prevent service crashes.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N version 6.0 2.3.4 TP-Link TL-WR886N version 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `hosts info` parameter. **Recommendations** For TP-Link TL-WR886N version 6.0 2.3.4, avoid using long JSON data for the `hosts info` parameter to prevent service crashes. For TP-Link TL-WR886N version 7.0 1.1.0, avoid using long JSON data for the `hosts info` parameter to prevent service crashes. As a temporary workaround, consider restricting access to the affected services until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `wlan access` name. **Recommendations** For TP-Link TL-WR886N version 6.0 2.3.4, avoid using long JSON data for the `wlan access` name to prevent service crashes. For TP-Link TL-WR886N version 7.0 1.1.0, restrict access to the wlan access feature until a fix is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the protocol `wan wan rate`. **Recommendations** For TP-Link TL-WR886N version 6.0 2.3.4, restrict access to the `wan wan rate` protocol to prevent exploitation. For TP-Link TL-WR886N version 7.0 1.1.0, avoid using long JSON data in the `wan wan rate` protocol until a fix is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `ip mac bind` name. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the JSON data input for the `ip mac bind` name to prevent service crashes until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `phddns` `username`. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the `phddns` service until a patch is available. As a temporary workaround, limit the length of JSON data accepted for the `username` variable in the `phddns` service to prevent service crashes.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `reboot timer` name. **Recommendations** For TP-Link TL-WR886N version 6.0 2.3.4, avoid using long JSON data for the `reboot timer` name to prevent service crashes. For TP-Link TL-WR886N version 7.0 1.1.0, restrict access to the JSON data input for the `reboot timer` name until a fix is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for `dhcpd` `udhcpd` enable. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the `dhcpd` and `udhcpd` services until a patch is available. As a temporary workaround, limit the length of JSON data accepted by these services to prevent crashes. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for the `time switch` name. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the JSON data input for the `time switch` name to prevent service crashes until a patch is available.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for `hosts info` `set block flag` `up limit`. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the JSON data handling functionality until a patch is available. As a temporary workaround, limit the length of JSON data accepted by the router to prevent service crashes.

**Name of the Vulnerable Software and Affected Versions** TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0 **Description** An issue allows authenticated attackers to crash router services, including inetd, HTTP, DNS, and UPnP, by sending long JSON data for firewall DMZ enable. **Recommendations** For TP-Link TL-WR886N versions 6.0 2.3.4 through 7.0 1.1.0, consider restricting access to the JSON data handling functionality for the firewall DMZ enable feature until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.