Security Flaw in TP-Link TL-WR1043ND V2 Devices Makes Credentials Vulnerable
CVE-2019-6972

7.5HIGH

Key Information:

Vendor: Tp-link
Status: Tl-wr1043nd Firmware
Vendor: CVE Published:; 19 June 2019

Summary

A vulnerability exists in TP-Link TL-WR1043ND V2 devices that allows attackers to decode and crack sensitive credentials easily. The issue stems from the encoding of credentials in the 'Authorization' cookie using URL encoding followed by Base64 encoding. This flawed approach permits attackers to utilize brute-force, WordList, or Rainbow Table attacks effectively. Notably, usernames are stored in cleartext, while passwords are hashed using the outdated MD5 algorithm, making them highly susceptible to compromise. Implementing stronger encryption and enhancing password management practices are essential to mitigate this risk.

References

https://github.com/MalFuzzer/Vulnerability-Research/blob/...

x_refsource_MISC

https://twitter.com/MalFuzzer/status/1141269335685652480?...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jun 19, 2019
Vulnerability Reserved
Jan 25, 2019