受影响系统:
TP-LINK TL-WR740N v4.23
描述:
TL-WR740N是150Mbps的无线路由器。
TL-WR740N 3.16.4 Build 130205 Rel.63875n路由器在实现上存在远程拒绝服务漏洞。如果Web服务器(httpd)不在默认的TCP端口80上处理HTTP GET请求,攻击者发送一系列的三个点(...)到路由器,会致使httpd崩溃,用户将无法访问管理控制面板的管理界面。重启路由器后可以正常工作。
<*来源:Gjoko Krstic (liquidworm@gmail.com)
*>
测试方法:
警 告
以下程序(方法)可能带有攻击性,仅供安全研究与教学之用。使用者风险自负!
#!/usr/local/bin/perl
#
#
# TP-Link TL-WR740N Wireless Router Remote Denial Of Service Exploit
#
#
# Vendor: TP-LINK Technologies Co., Ltd.
# Product web page: http://www.tp-link.us
#
# Affected version:
#
# - Firmware version: 3.16.4 Build 130205 Rel.63875n (Released:
2/5/2013)
# - Hardware version: WR740N v4 00000000 (v4.23)
# - Model No. TL-WR740N / TL-WR740ND
#
# Summary: The TL-WR740N is a combined wired/wireless network connection
# device integrated with internet-sharing router and 4-port switch. The
# wireless N Router is 802.11b&g compatible based on 802.11n technology
# and gives you 802.11n performance up to 150Mbps at an even more
affordable
# price. Bordering on 11n and surpassing 11g speed enables high
bandwidth
# consuming applications like video streaming to be more fluid.
版权与免责声明:
凡注明稿件来源的内容均为转载稿或由网友用户注册发布,本网转载出于传递更多信息的目的;如转载稿涉及版权问题,请作者联系我们,同时对于用户评论等信息,本网并不意味着赞同其观点或证实其内容的真实性;