Geeks for your information News Privacy & Security News v
Multiple Remote TP-Link TL-R600VPN Router Vulnerabilities Patched
Multiple Remote TP-Link TL-R600VPN Router Vulnerabilities Patched
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
19 November 18, 20:07
Quote:TP-Link TL-R600VPN routers with HWv3 FRNv1.3.0 and HWv2 FRNv1.2.3 were found to contain multiple remotely exploitable remote code execution (RCE), denial-of-service (DoS), and information disclosure security issues as disclosed by Cisco Talos' Jared Rittle.

Luckily, the remote code execution vulnerabilities discovered in the TP-Link TL-R600VPN 'SafeStream Gigabit Broadband VPN Router' require the remote attackers to be authenticated which decreases the seriousness of these security issues.

However, according to the Cisco Talos researcher, the exploit code "could be executed with root privileges" because the arbitrary code execution is performed under the security privileges of the HTTPD process which is always running as root.

Source: https://news.softpedia.com/news/multiple...3857.shtml
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
Mozilla Publishes Firefox Roadmap With N...
Mozilla has releas...harlan4096 — 10:18
Sysinternals Suite 6.17.2026
Sysinternals Suite ...harlan4096 — 10:00
AxCrypt 3.1.1.0
AxCrypt 3.1.1.0: ...harlan4096 — 09:57
Tor Browser 15.0.16
Tor Browser 15.0.1...harlan4096 — 09:56
Bitdefender 27.0.60.338
Latest version of ...harlan4096 — 09:54

[-]
Birthdays
Today's Birthdays
avatar (39)biobdam
Upcoming Birthdays
avatar (39)Tedscolo
avatar (46)brakasig
avatar (40)storoBox
avatar (48)kinotHeemn
avatar (39)Ceballos1976
avatar (40)efynu

[-]
Online Staff
There are no staff members currently online.

>