Details of VAR-201405-0560

ID

VAR-201405-0560

TITLE

TP-Link TD-W89 Routers 'rom-0' File Unauthorized Access Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2014-03142 // BID: 67435

DESCRIPTION

TP-Link TD-W89 Routers is a router device. TP-LINK TD-W89 is a router product of China TP-LINK company. An unauthorized access vulnerability exists in the TP-LINK TD-W89 router. An attacker could use this vulnerability to gain access to sensitive information

Trust: 1.35

sources: CNVD: CNVD-2014-03142 // CNNVD: CNNVD-201405-333 // BID: 67435

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-03142

AFFECTED PRODUCTS

vendor:

tp link

model:

td-w89 routers

scope:

version:

Trust: 0.6

sources: CNVD: CNVD-2014-03142

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2014-03142
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2014-03142
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:P/I:N/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	NONE
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2014-03142

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201405-333

TYPE

Design Error

Trust: 0.3

sources: BID: 67435

EXTERNAL IDS

db:	BID	id:	67435	Trust: 1.5
db:	CNVD	id:	CNVD-2014-03142	Trust: 0.6
db:	CNNVD	id:	CNNVD-201405-333	Trust: 0.6

sources: CNVD: CNVD-2014-03142 // BID: 67435 // CNNVD: CNNVD-201405-333

REFERENCES

url:	http://www.exploit-db.com/wp-content/themes/exploit/docs/33369.pdf	Trust: 0.6
url:	http://www.securityfocus.com/bid/67435	Trust: 0.6

sources: CNVD: CNVD-2014-03142 // CNNVD: CNNVD-201405-333

CREDITS

t3h n00b

Trust: 0.9

sources: BID: 67435 // CNNVD: CNNVD-201405-333

SOURCES

db:	CNVD	id:	CNVD-2014-03142
db:	BID	id:	67435
db:	CNNVD	id:	CNNVD-201405-333

LAST UPDATE DATE

2022-05-17T22:46:51.960000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-03142	date:	2014-05-22T00:00:00
db:	BID	id:	67435	date:	2014-05-16T00:00:00
db:	CNNVD	id:	CNNVD-201405-333	date:	2015-04-30T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-03142	date:	2014-05-21T00:00:00
db:	BID	id:	67435	date:	2014-05-16T00:00:00
db:	CNNVD	id:	CNNVD-201405-333	date:	2014-05-22T00:00:00