[ISN] Open-source firmware vuln exposes wireless routers

From: InfoSec News <alerts_at_private>
Date: Wed, 22 Jul 2009 01:45:42 -0500 (CDT)

By Dan Goodin in San Francisco
The Register
21st July 2009

A hacker has discovered a critical vulnerability in open-source firmware 
available for wireless routers made my Linksys and other manufacturers 
that allows attackers to remotely penetrate the device and take full 
control of it.

The remote root vulnerability affects the most recent version of DD-WRT, 
a piece of firmware many router users install to give their device 
capabilities not available by default. The bug allows unauthenticated 
users to remotely gain root access simply by luring someone on the local 
network to a malicious website.

"This means someone can even post some crafted [img] link on a forum and 
a dd-wrt router owner visiting the forum will get owned," a user named 
Leka Vecher "gat3way" wrote in this posting to Milw0rm. "A weird 
vulnerability you're unlikely to see in 2009 :) Quite embarrassing I 
would say."

Messages sent through the DD-WRT website to the software designers 
weren't returned by time of publication, but comments posted to this 
user forum thread said the vulnerability affected the most recent 
builds, prompting a user by the name of autobot to declare the 
vulnerability a "mini code red."


Attend Black Hat USA, July 25-30 in Las Vegas, 
the world's premier technical event for ICT security experts.
Network with 4,000+ delegates from 50 nations.  
Visit product displays by 30 top sponsors in 
a relaxed setting. http://www.blackhat.com
Received on Tue Jul 21 2009 - 23:45:42 PDT

This archive was generated by hypermail 2.2.0 : Tue Jul 21 2009 - 23:55:10 PDT