Slashdot Mirror

← Back to Stories (view on slashdot.org)

Backdoor Found In TP-Link Routers

Posted by Soulskill on Friday March 15, 2013 @12:49AM from the control-of-your-router-hosted-in-the-cloud dept.

New submitter NuclearCat writes "Polish security researchers have found a backdoor in TP-Link routers, allowing an attacker to not only gain root access to the local network, but also to knock down the router via a CSRF attack remotely. (Further information — Google translation of Russian original). According to the researchers, TP-Link hasn't yet responded to give an answer about issue. The good news: Users who replaced their TP-Link firmware with Open/DD-WRT firmware can sleep well."

1 of 197 comments (clear)

Min score:

Reason:

Sort:

I have to wonder why they bother... by fuzzyfuzzyfungus · 2013-03-15 00:55 · Score: 5, Interesting

Given the relatively dismal reputation of vendor firmware on most routers, and the distinctly limited opportunities for software-differentiation in the 'well, it sits there and makes the internet wireless, right?' networking market, I honestly have to wonder why most vendor firmware isn't just thinly-skinned Open or DD WRT out of the box...