Denial of Service Vulnerability in TP-Link TL-WR740N Router
CVE-2014-9350

Currently unrated

Key Information:

Vendor: Tp-link
Status: Tl-wr740n Firmware; Tl-wr740n
Vendor: CVE Published:; 8 December 2014

Summary

A vulnerability exists in the TP-Link TL-WR740N router which allows remote attackers to exploit the device by sending crafted requests to PingIframeRpm.htm. Specifically, utilizing a 'new' value within the isNew parameter can trigger a denial of service, resulting in an httpd crash. This flaw can disrupt network services, leaving the router unresponsive to legitimate traffic.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/98927

vdb-entryx_refsource_XF

http://packetstormsecurity.com/files/129227/TP-Link-TL-WR...

x_refsource_MISC

http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-521...

x_refsource_MISC

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Dec 8, 2014
Vulnerability Reserved
Dec 8, 2014