CVE-2013-2645
TP-Link TL-WR1043N Router - Cross-Site Request Forgery
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Multiple cross-site request forgery (CSRF) vulnerabilities on the TP-LINK WR1043N router with firmware TL-WR1043ND_V1_120405 allow remote attackers to hijack the authentication of administrators for requests that (1) enable FTP access (aka "FTP directory traversal") to /tmp via the shareEntire parameter to userRpm/NasFtpCfgRpm.htm, (2) change the FTP administrative password via the nas_admin_pwd parameter to userRpm/NasUserAdvRpm.htm, (3) enable FTP on the WAN interface via the internetA parameter to userRpm/NasFtpCfgRpm.htm, (4) launch the FTP service via the startFtp parameter to userRpm/NasFtpCfgRpm.htm, or (5) enable or disable bandwidth limits via the QoSCtrl parameter to userRpm/QoSCfgRpm.htm.
Múltiples vulnerabilidades de CSRF en el router TP-LINK WR1043N con firmware TL-WR1043ND_V1_120405 permiten a atacantes remotos secuestrar la autenticación de administradores para solicitudes que (1) habilitan el acceso FTP (también conocido como 'salto de directorio de FTP') a /tmp a través del parámetro shareEntire en userRpm/NasFtpCfgRpm.htm, (2) cambian la contraseña de administración FTP a través del parámetro nas_admin_pwd en userRpm/NasUserAdvRpm.htm, (3) habilitan FTP en la interfaz WAN a través del parámetro internetA en userRpm/NasFtpCfgRpm.htm, (4) lanzan el servicio FTP a través del parámetro startFtp en userRpm/NasFtpCfgRpm.htm, o (5) habilitan o deshabilitan los límites de la banda ancha a través del parámetro QoSCtrl en userRpm/QoSCfgRpm.htm.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2013-03-22 CVE Reserved
- 2013-04-24 First Exploit
- 2014-10-06 CVE Published
- 2023-03-20 EPSS Updated
- 2024-08-06 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://securityevaluators.com/knowledge/case_studies/routers/tp-link_wr1043n.php | X_refsource_misc |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/38492 | 2013-04-24 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Tp-link Search vendor "Tp-link" | Firmware Search vendor "Tp-link" for product "Firmware" | tl-wr1043nd_v1_120405 Search vendor "Tp-link" for product "Firmware" and version "tl-wr1043nd_v1_120405" | tp-link_wr1043n |
Affected
| ||||||