On some TP-LINK router models, the default password is the last 8 characters of the device’s MAC address.

The latest zero-day vulnerability (yes, this is irony, the sarcasm tag is eaten up by habrapers) became known today from an information security specialist named Mark. He discovered an interesting fact - in some models of TP-Link routers, the last characters of the MAC address of this device are used as a password. Before reporting this on the Web, Mark wrote to the company, but didn’t respond there.

So far we are talking only about the model WR702N. This is a small and fast router with low power consumption. Yes, and it costs a bit. But you can find out the password of such a device without any problems at all - you just need to scan the network with a special “exploit” into one line. And since ordinary users do not change the default passwords, access is preserved to most devices.


')
And this is not a joke, try searching in Google, in pictures, images of the router by model name. Photos are found in reviews and images from online stores. Here is one such image:



The password is unique, but scanning the MAC address of the device is not particularly difficult. MAC is available for any device that can "listen" to a wireless network. All that is left is to connect to an access point whose MAC is known.

Here is a scanner in one line:


Yes, users should change the default passwords left by the manufacturer. But I still want the default better protection.