TP-Link routersVulnerability is found in popular routers of TP-Link.

Project Sekurek, which is engaged in information security, announced the availability of the backdoor in routers TP-Link.

With this backdoor network users can gain complete control over the device.

The researchers presented PoC-code exploitation, which applies to such routers as TL-WDR4300 and TL-WR743ND (with latest firmware).

Exploiting the backdoor, an attacker can gain full access to a network device. Sekurek staff stated that they were twice notified guide TP-Link Brescia (12 February and 24 February, respectively), but no response had been received.

The vulnerability is caused due to insufficient restrictions on access to administrative functionality in HTTP, FTP and TFTP services.

A detailed description of the vulnerability can be found at:
http://malwarelist.net/2013/03/15/backdoor-in-tp-link-devices/

*****************************************************************

New submitter NuclearCat writes “Polish security researchers have found a backdoor in TP-Link routers, allowing an attacker to not only gain …

Default Back door in TP-LINK routers.  Probably comes in handy if you want to flash the firmware but.

Forum discussion: Treacherous backdoor found in TP-Link routers: Security experts in Poland have discovered a treacherous backdoo.

Advertisements