This was my pretty much first encounter with this type of stuff (and my first encounter with MIPS really). My task was to patch this vulnerability and make the ROM-0 not downloadable. I had one of those devices (TD-W8901G) and I took this as a good fortune sign to start playing with hardware router hacking :-). The list of vulnerable devices is presented below: If you are looking for rom-0 password decoder (rom0 decompressor) - here it is: Your are doing everything on your own responsibility. Actually I was a bit pissed at TP-LINK for this crap so I have decided to patch the vulnerability by myself.ĭISCLAIMER: Author takes no responsibility for any actions with provided informations or codes. This includes your ADSL login/password combination, WIFI password and basically all of your configuration data. ) can download all important and secret data stored in your router. In short attacker by requesting ROM-0 through HTTP request (ie. This particular vulnerability to which I am referring was described here. Recently a critical vulnerability has been found in TP-LINK routers and few other router devices.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |