TP-Link routersVulnerability is found in popular routers of TP-Link.

Project Sekurek, which is engaged in information security, announced the availability of the backdoor in routers TP-Link.

With this backdoor network users can gain complete control over the device.

The researchers presented PoC-code exploitation, which applies to such routers as TL-WDR4300 and TL-WR743ND (with latest firmware).

Exploiting the backdoor, an attacker can gain full access to a network device. Sekurek staff stated that they were twice notified guide TP-Link Brescia (12 February and 24 February, respectively), but no response had been received.

The vulnerability is caused due to insufficient restrictions on access to administrative functionality in HTTP, FTP and TFTP services. Continue reading