Massive intrussion on TD8951ND and others

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Massive intrussion on TD8951ND and others

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Massive intrussion on TD8951ND and others
Massive intrussion on TD8951ND and others
2014-05-05 14:15:54
Region : Spain

Model : TD-W8951ND

Hardware Version : V5

Firmware Version : 110729

ISP :


There is a major fault in all the firmware versions for TD-W8951ND and others that allow a remote attacker to download your configuration file unauthenticated (just browsing to http://your_ip/rom-0
With that file they can get your router password and change any setting they wish, for example the dns servers to spoof your traffic and send you through scam sites. There's no fix other than limiting the remote access on the routers. See this link for more information:
http://rootatnasro.wordpress.com/2014/01/11/how-i-saved-your-a-from-the-zynos-rom-0-attack-full-disclosure/
  0      
  0      
#1
Options
2 Reply
Re:Massive intrussion on TD8951ND and others
2014-06-03 20:52:04
Thanks a lot tp-link, you are a responsible company, how can a massive fail like this and a company like tp-link not care for it..
  0  
  0  
#2
Options
Re:Massive intrussion on TD8951ND and others
2014-06-14 22:38:29
Hi same problem. If this not be fixed i never buy, never recommend any tp-link. The worst is when nobody from TP-link dont write some reply.

//EDIT: aseques y are lucky man becouse for V5 exist new firmware with fix rom-0 vulnerability download at http://www.tp-link.com/en/support/download/?model=TD-W8951ND&version=V5 but for version V4 V2 V1 no exist
  0  
  0  
#3
Options