TP-Link Archer AX53 Buffer Overflow Vulnerability in Network Probe Handling Function

A buffer overflow vulnerability has been identified in the TP-Link Archer AX53 V1 router, specifically in the network probe handling function. This issue arises from inadequate input validation, allowing unvalidated parameters to cause a stack-based buffer overflow. The vulnerability can lead to a crash of the affected service and, under certain conditions, may enable remote code execution through complex heap-spray techniques. Successful exploitation could result in repeated service disruptions and, in some scenarios, allow an attacker to gain control of the device.

Impact

Exploitation of this vulnerability can cause the affected service to crash, leading to repeated service unavailability. Under specific conditions, it may also allow for remote code execution, potentially giving an attacker control over the device.

Remediation

Users are advised to download and update to the latest firmware version. The latest firmware for the Archer AX53 V1 can be downloaded from the TP-Link official website.