CVE-2019-13276

Name of the Vulnerable Software and Affected Versions TRENDnet TEW-827DRU versions up to and including 2.04B03

Description The issue is a stack-based buffer overflow in the ssi binary, allowing an unauthenticated user to execute arbitrary code. This can be achieved by providing a sufficiently long query string when POSTing to any valid cgi, txt, asp, or js file, such as "/api/v1/login" or "/users/{id}". The query string variable is used to exploit this issue. The vulnerability can be exploited on the local intranet or remotely if remote administration is enabled.

Recommendations For TRENDnet TEW-827DRU versions up to and including 2.04B03, consider disabling remote administration to minimize the risk of exploitation. As a temporary workaround, restrict access to valid cgi, txt, asp, or js files until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.