Remote Code Execution Vulnerability in TP-Link WR1043nd (Firmware Version 3) HTTP Server

CVE-2018-16119 · HIGH Severity

AV:N/AC:L/AU:S/C:C/I:C/A:C

Stack-based buffer overflow in the httpd server of TP-Link WR1043nd (Firmware Version 3) allows remote attackers to execute arbitrary code via a malicious MediaServer request to /userRpm/MediaServerFoldersCfgRpm.htm.

Learn more about our Cis Benchmark Audit For Server Software.