CVE-2018-15172

HIGH

TP-Link TL-WR840N Firmware - Buffer Overflow via Long Authorization HTTP Header

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-15172. PoCs published by Aniket Dinda.

AI-analyzed exploit summary This exploit is a manual proof-of-concept for a denial-of-service (DoS) vulnerability in TP-Link WR840N routers. It involves intercepting an HTTP request with Burp Suite and replacing the 'Authorization: Basic' header with a string of 2000 zeros, causing the router to log out and disconnect.

Description

TP-Link WR840N devices have a buffer overflow via a long Authorization HTTP header.

Exploits (1)

exploitdb WRITEUP
by Aniket Dinda · textdoshardware
https://www.exploit-db.com/exploits/45203

This exploit is a manual proof-of-concept for a denial-of-service (DoS) vulnerability in TP-Link WR840N routers. It involves intercepting an HTTP request with Burp Suite and replacing the 'Authorization: Basic' header with a string of 2000 zeros, causing the router to log out and disconnect.

Classification
Writeup 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: TP-Link Wireless N Router WR840N (Firmware version 0.9.1 3.16 v0001.0 Build 170608 Rel.58696n)
Auth required
Prerequisites: Access to the router's network · Burp Suite or similar intercepting proxy · Valid credentials to access the router's Quick Setup page
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45203/

Scores

CVSS v3 7.5
EPSS 0.0830
EPSS Percentile 94.2%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-119
Status published
Products (1)
tp-link/tl-wr840n_firmware 0.9.1
Published Aug 15, 2018
Tracked Since Feb 18, 2026