Vulnerability Description
TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote attackers to cause a denial of service (httpd crash) via vectors involving a "new" value in the isNew parameter to PingIframeRpm.htm.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Tp-Link | Tl-Wr740N Firmware | 3.16.4 |
| Tp-Link | Tl-Wr740N | 4 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/129227/TP-Link-TL-WR740N-Denial-Of-Service.
- http://www.exploit-db.com/exploits/35345
- http://www.osvdb.org/115017
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5210.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98927
- http://packetstormsecurity.com/files/129227/TP-Link-TL-WR740N-Denial-Of-Service.
- http://www.exploit-db.com/exploits/35345
- http://www.osvdb.org/115017
- http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5210.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/98927
FAQ
What is CVE-2014-9350?
CVE-2014-9350 is a vulnerability with a CVSS score of 5.0 (MEDIUM). TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote attackers to cause a denial of service (httpd crash) via vectors involving a "new" val...
How severe is CVE-2014-9350?
CVE-2014-9350 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-9350?
Check the references section above for vendor advisories and patch information. Affected products include: Tp-Link Tl-Wr740N Firmware, Tp-Link Tl-Wr740N.