Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

TP-LINK WDR4300 Multiple Vulnerabilities

High

Synopsis

A TP-Link router was identified on the network. N750 Wireless Dual Band Gigabit Router (TL-WDR4300) is running outdated firmware.

Description

Firmware version 140916 is vulnerable to the following issues:

- Stored cross-site scripting via injecting javascript code into the DHCP hostname field, which will execute when the administrator visits the DHCP clients panel.

- A denial of service vulnerability that can be triggered when sending an extra overly long HTTP header field to the device's web server.

Solution

The vendor has released a patch for this vulnerability, available on their website. Update your firmware to Build 140916.