TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution

Posted by deepcore on April 16, 2020 – 4:23 pm

This Metasploit module exploits a command injection vulnerability in the tdpServer daemon (/usr/bin/tdpServer), running on the router TP-Link Archer A7/C7 (AC1750), hardware version 5, MIPS Architecture, firmware version 190726. The vulnerability can only be exploited by an attacker on the LAN side of the router, but the attacker does not need any authentication to abuse it. After exploitation, an attacker will be able to execute any command as root, including downloading and executing a binary from another host. This vulnerability was discovered and exploited at Pwn2Own Tokyo 2019 by the Flashback team.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« Playable v9.18 iOS – Multiple Web Vulnerabilities Liferay Portal Java Unmarshalling Remote Code Execution »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL