SANS ISC: Ancient TP-Link Backdoor Discovered by Attackers
@jullrich did you want to report this vulnerability to MITRE (or be credited)? Using CWE-912: Hidden Functionality and sekurak's entry as vulnerability details, this should be a quick CVE submission.

#tplink #backdoor #vulnerability #cve

@screaminggoat @jullrich I just tested this, seems immortal (no fw upgrades since 2012, latest affected) in WR841N.

@buherator @jullrich A preliminary search of MITRE doesn't show any similar vulnerability for TP-LINK TL-WDR4300 so it'd be a new CVE.

@screaminggoat not my find. I just saw the expo I’ll being used.

@screaminggoat @buherator you saw current models are affected? Or just that the old one never got fixed.

@jullrich @screaminggoat I only got this old one at hand sry