Buffer Overflow Vulnerability in I-O DATA DEVICE TS-WRLP and TS-WRLA Firmware
CVE-2016-7820

7.2HIGH

Key Information:

Vendor

I-o Data Device, Inc.

Status
Ts-wrlp
Ts-wrla
Vendor
CVE Published:
9 June 2017

What is CVE-2016-7820?

A buffer overflow vulnerability exists in the firmware of I-O DATA DEVICE TS-WRLP and TS-WRLA devices, specifically in versions 1.01.02 and earlier. This flaw allows attackers with administrator rights to exploit unspecified vectors, leading to potential denial-of-service conditions or the execution of arbitrary code. This necessitates immediate attention to ensure device security.

Affected Version(s)

TS-WRLA firmware version 1.01.02 and earlier

TS-WRLP firmware version 1.01.02 and earlier

References

http://www.securityfocus.com/bid/94594
vdb-entryx_refsource_BID
http://www.iodata.jp/support/information/2016/ts-wrlap_2/
x_refsource_CONFIRM
https://jvn.jp/en/jp/JVN25059363/index.html
third-party-advisoryx_refsource_JVN

CVSS V3.1

Score:
7.2
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
High
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2016-7820 : Buffer Overflow Vulnerability in I-O DATA DEVICE TS-WRLP and TS-WRLA Firmware