Multiple Routers 'rom-0' Vulnerability Network Vulnerability

Summary

The remote Router is prone to the 'rom-0' Vulnerability

Impact

Attackers can exploit this issue to bypass certain security restrictions and obtain sensitive information which may aid in further attacks.

Solution

Ask the Vendor for an update.

Insight

If you request the /rom-0 file it does not require authentication. This can be reversed using available tools like the one at http://50.57.229.26/zynos.php. The first string returned is the admin password.

Detection

Request /rom-0 and check the response.

References

http://dariusfreamon.wordpress.com/2014/01/20/tp-link-td-w8901g-router-multiple-vulnerabilities/

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 9.4 AV:N/AC:L/Au:N/C:C/I:N/A:C

Related Vulnerabilities

Adobe ColdFusion Multiple Vulnerabilities-02 May-2014
Apple Safari PDF Javascript Security Bypass Bypass Vulnerability
A-Blog 'sources/search.php' SQL Injection Vulnerability
Adobe ColdFusion Directory Traversal Vulnerability
68designs 68kb Multiple Remote File Include Vulnerabilities

Take action and discover your vulnerabilities