Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers - Labarai Ingantattu

AdSense

Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers

Cisco Talos Intelligence Group's Jared Rittle found three vulnerabilities in the Linksys E Series line of routers which allow attackers to execute arbitrary system commands by exploiting operating system command injections.

"An attacker can exploit these bugs by sending an authenticated HTTP request to the network configuration. An attacker could then gain the ability to arbitrarily execute code on the machine," says the Cisco Talos researcher.

Rittle tested his proofs-of-concept against two Linksys router models, the Linksys E1200 and the Linksys E2500, but according to his advisory, there are other vulnerable routers in the Linksys E series line.

The E Series are routers designed for small business and home office usage, with a host of features that should make it a lot easier to wirelessly connect a wide array of devices from computers and smart TVs to smartpho... (read more)

No comments

Powered by Blogger.