
Backdoor in TP-Link devices
Vulnerability: Backdoor in TP-Link devices
Danger level: Avarage
Patch: None
Number of vulnerabilities: 1
Vector of operation: Local Network
Impact: System Compromise
Be exploited: PoC code
Affected products: TL-WR743ND, TL-DR4300.
Affected versions: TL-WDR4300, TL-WR743ND (v1.2 v2.0).
Description:
Which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to insufficient restrictions on access to administrative functionality in HTTP, FTP and TFTP services. A remote user can connect to the device and get full control over it.
Manufacturer URL: http://www.tp-link.com/
Solution: The way to remove the backdoor does not exist at present.