TP-Link VxWorks / 2-Series Switches Fail

TP-Link VxWorks / 2-Series Switches Fail: Posted Oct 1, 2014; Authored by kvnjs; TP-Link VxWorks-based devices and 2-Series switches suffer from a large amount of vulnerabilities that the vendor refuses to address.; tags | advisory, vulnerability; advisories | CVE-2008-2476, CVE-2010-2966, CVE-2010-2967, CVE-2013-0711, CVE-2013-0712, CVE-2013-0713, CVE-2013-0714, CVE-2013-0715, CVE-2013-0716; SHA-256 | a676a5da6cb174308fa906e9e2a112a82239a9b19b287869528315328ae3de27; Download | Favorite | View

TP-Link VxWorks / 2-Series Switches Fail

Vendor affected: TP-Link (https://tp-link.com)

Products affected:
   * All TP-Link VxWorks-based devices (confirmed by vendor)
   * All "2-series" switches (confirmed by vendor)
   * TL-SG2008 semi-managed switch (confirmed by vendor)
   * TL-SG2216 semi-managed switch (confirmed by vendor)
   * TL-SG2424 semi-managed switch (confirmed by vendor)
   * TL-SG2424P semi-managed switch (confirmed by vendor)
   * TL-SG2452 semi-managed switch (confirmed by vendor)

Vulnerabilities:
   * All previously-reported VxWorks vulnerabilities from 6.6.0 on;
     at the very least:
     * CVE-2013-0716 (confirmed by vendor)
     * CVE-2013-0715 (confirmed by vendor)
     * CVE-2013-0714 (confirmed by vendor)
     * CVE-2013-0713 (confirmed by vendor)
     * CVE-2013-0712 (confirmed by vendor)
     * CVE-2013-0711 (confirmed by vendor)
     * CVE-2010-2967 (confirmed by vendor)
     * CVE-2010-2966 (confirmed by vendor)
     * CVE-2008-2476 (confirmed by vendor)
   * SSLv2 is available and cannot be disabled unless HTTPS is
     completely disabled (allows downgrade attacks)
     (confirmed by vendor)
   * SSL (v2, v3) offers insecure cipher suites and HMACs which cannot
     be disabled (allows downgrade attacks)
     (confirmed by vendor)

Design flaws:
   * Telnet is available and cannot be disabled (confirmed by vendor)
   * SSHv1 enabled by default if SSH is enabled (confirmed by vendor)

Vendor response:
   TP-Link are not convinced that these flaws should be repaired.

   TP-Link's Internet presence -- or at least DNS -- is available only
   intermittently. Most emails bounced. Lost contact with vendor, but
   did confirm that development lead is now on holiday and will not
   return for at least a week.

   Initial vendor reaction was to recommend purchase of "3-series"
   switches. Vendor did not offer reasons why "3-series" switches would
   be more secure, apart from lack of telnet service. Vendor confirmed
   that no development time can be allocated to securing "2-series"
   product and all focus has shifted to newer products.

   (TL-SG2008 first product availability July 2014...)

   Vendor deeply confused about security of DES/3DES, MD5, claimed that
   all security is relative. ("...[E]ven SHA-1 can be cracked, they just
   have different security level.")

Fix availability:
   None.

Work-arounds advised:
   None possible. Remove products from network.

Top Authors In Last 30 Days

Red Hat 300 files
Ubuntu 63 files
Debian 20 files
LiquidWorm 19 files
Apple 9 files
Gentoo 5 files
Google Security Research 4 files
Alter Prime 3 files
Chokri Hammedi 3 files
nu11secur1ty 2 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,163)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,604)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,928)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,326)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,981)
UNIX (9,474)
UnixWare (188)
Windows (6,784)
Other

TP-Link VxWorks / 2-Series Switches Fail

TP-Link VxWorks / 2-Series Switches Fail

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems

TP-Link VxWorks / 2-Series Switches Fail

Share This

TP-Link VxWorks / 2-Series Switches Fail

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems