Fixed a critical vulnerability issue related to UPnP

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.

Fixed a critical vulnerability issue related to UPnP

This thread has been locked for further replies. You can start a new thread to share your ideas or ask questions.
Fixed a critical vulnerability issue related to UPnP
Fixed a critical vulnerability issue related to UPnP
2013-02-07 08:43:29
Model : TD-W8960N

Hardware Version : V4

Following the release this week of a research paper from security firm
Rapid7 describing vulnerabilities in the widely used Intel/Portable UPnP SDK and MiniUPnP SDK stacks, security researchers from DefenseCode announced that they identified a critical vulnerability in a separate UPnP stack developed by Broadcom and used in devices with Broadcom chipsets, including one device from TP-LINK, the TD-W8960N.
http://www.defensecode.com/public/DefenseCode_Broadcom_Security_Advisory.pdf
Being aware of the urgency of this issue, our R&D solved it immediately and released a beta Firmware for the customers who are worried about this problem to download.

You can find this beta Firmware here:
http://www.tp-link.com/en/support/download/?model=TD-W8960N&version=V4#tbl_j
At the end of February, we will release the official FW, solving the UPnP Vulnerability of TD-W8960N.
  0      
  0      
#1
Options
6 Reply
Re:Fixed a critical vulnerability issue related to UPnP
2013-02-08 16:58:19
Nice !
  0  
  0  
#2
Options
8960n v3
2013-04-29 17:01:24
looks like i was hit by this vulnerability and no firmware upgrade available.

my password was changed, but internet still worked, had to reset back to factory defaults and reupload my config.

dunno how long before get hit again.

upnp service is disabled but still running!
  0  
  0  
#3
Options
Firmware still Beta
2013-08-27 09:31:26
The firmware for TD-W8960N V4 is still in Beta, after 6 months. Any info on when official FW to be released?
  0  
  0  
#4
Options
Re:Fixed a critical vulnerability issue related to UPnP
2014-04-12 05:18:44

tplink wrote

Model : TD-W8960N

Hardware Version : V4

You can find this beta Firmware here:
http://www.tp-link.com/en/support/download/?model=TD-W8960N&version=V4#tbl_j
At the end of February, we will release the official FW, solving the UPnP Vulnerability of TD-W8960N.


Seems like even the beta firmware had been removed from the download page instead! What's going on?
  0  
  0  
#5
Options
Re:Fixed a critical vulnerability issue related to UPnP
2017-12-04 10:55:25
Thank you very much. I did it with my website: namkhoathanhduc.com
  0  
  0  
#6
Options
Re:Fixed a critical vulnerability issue related to UPnP
2018-01-18 21:13:43
Thank you very much ! Model : TD-W8960N good
  0  
  0  
#7
Options

Information

Helpful: 0

Views: 966

Replies: 6

Related Articles