CVE-2014-9350

EUVD-2014-9175
TP-Link TL-WR740N 4 with firmware 3.17.0 Build 140520, 3.16.6 Build 130529, and 3.16.4 Build 130205 allows remote attackers to cause a denial of service (httpd crash) via vectors involving a "new" value in the isNew parameter to PingIframeRpm.htm.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 93%
Affected Products (NVD)
VendorProductVersion
tp-linktl-wr740n_firmware
3.16.4:130205
tp-linktl-wr740n_firmware
3.16.6:130529
tp-linktl-wr740n_firmware
3.17.0:140520
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://packetstormsecurity.com/files/129227/TP-Link-TL-WR740N-Denial-Of-Service.html
http://www.exploit-db.com/exploits/35345
http://www.osvdb.org/115017
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5210.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/98927
http://packetstormsecurity.com/files/129227/TP-Link-TL-WR740N-Denial-Of-Service.html
http://www.exploit-db.com/exploits/35345
http://www.osvdb.org/115017
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5210.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/98927