DefenseCode researchers say the devices contain a remote root access flaw

Jan 31, 2013 14:49 GMT  ·  By

As they promised, DefenseCode researchers have continued to investigate the remote code execution vulnerabilities that plague some Cisco routers. They’ve found that Cisco devices are not the only ones that contain the security hole.

Cisco’s own investigation has revealed that only Linksys WRT54GL routers are vulnerable, but experts say that WRT54G3G and “probably” WRT310N are also plagued by the vulnerability.

However, they’ve discovered something even more shocking. The flaw lies in a firmware component that’s utilized by many other companies as well, including Boardcom, Asus, TP-Link, D-Link, Netgear, US Robotics, and Zyxel.

“Vulnerability itself is located in Broadcom UPnP stack, which is used by many router manufacturers that produce or produced routers based on Broadcom chipset. We have contacted them with vulnerability details and we expect patches soon,” Leon Juranic, CEO of DefenseCode, explained.

On the other hand, Juranic notes that they’ve sent out over 200 emails, but so far they’re not too happy with the results.