Softpedia
 
HomepageWindowsGamesDriversMacLinuxScripts buttonMobileHandheldNews

NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
MEET THE EDITORS >>
TRENDING TODAY
Home > News > Security > Security Blog

January 15th, 2013, 09:11 GMT · By

BLOG

Experts Identify Zero-Day Vulnerability in Cisco’s Linksys Routers – Video

SHARE:

Adjust text size:


Security experts from DefenseCode have identified a zero-day root access vulnerability in Cisco’s Linksys routers.

The flaw, which affects default installations, has been uncovered during a product security evaluation. The exploit was developed in 12 days, Help Net Security informs.

After identifying the security hole, DefenseCode immediately reported it to Cisco, but the company claimed that the vulnerability had already been fixed in the latest firmware variant.

However, experts have determined that, in reality, the latest firmware and all previous versions are affected.

Shortly after DefenseCode revealed its intentions of publishing the complete proof-of-concept, Cisco contacted them. The networking giant plans on issuing a fix over the next 10 days.

The security firm’s representatives highlight the fact that this vulnerability should not be treated lightly, considering that Linksys routers are very popular, with over 70 million devices being sold.

TELL US WHAT YOU THINK:

1,812 hits · 2 comments · Link to this article · Print article · Send to friend · Subscribe to news

MUST-READ RELATED ARTICLES:


Java 7 Update 11 Addresses the Flaw Partly Fixed in October 2012, Experts Say
Oracle to Address 86 Vulnerabilities with January 2013 CPU
Phone Hacking Ring Targeting New York Businesses Possibly Linked to Al Qaeda
Flaw in Foxit Reader Browser Plugin Allows Cybercriminals to Compromise Computers
Java 7 Zero-Day Exploit Used to Distribute Reveton Ransomware

READER COMMENTS:


Comment #1 by: tloke on 19 Feb 2013, 19:40 UTC reply to this comment

The date of this article and firmware version number are important for those of us with Cisco Linksys routers. That information is missing.
Also, please turn off the max volume audio commercial that knocked me off my chair just as I started reading.

Comment #1.1 by: Eduard K on 20 Feb 2013, 10:59 GMT

The complete list of affected models has been published in a later article:

http://news.softpedia.com/news/DefenseCode-Publishes-List-of-Routers-Impacted-by-Broadcom-UPnP-Vulnerability-327631.shtml

Copyright © 2001-2013 Softpedia. Contact/Tip us at

WindowsGamesDriversMacLinuxScriptsMobileHandheldNews

SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   UPDATE YOUR SOFTWARE   |   ROMANIAN FORUM
© 2001 - 2013 Softpedia. All rights reserved.
Softpedia® and the Softpedia® logo are
registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use