markrubens – Fotolia
Multiple wireless routers manufactured by networking hardware supplier D-Link have been found at risk of being attacked via a remotely exploitable root command injection flaw, according to vulnerability management and threat assessment specialist Digital Defense.
Digital Defense’s vulnerability research team (VRT) found the previously undisclosed bug in four D-Link products, the DSR-150, DSR-250, DSR-500 and DSR-1000AC VPN routers running firmware versions 3.14 and 3.17.
Although pitched at small and medium-sized enterprises (SMEs) first and foremost, the affected devices are commonly sold on consumer websites and e-commerce sites. Given the rise in remote working during the pandemic, it is possible that many people are connecting into a corporate network using one of the affected devices, said Digital Defense.
The vulnerable component in the devices can be accessed without authentication and is exploitable over the internet from both WAN and LAN interfaces. As such, the researchers said, a remote, unauthenticated attacker who had access to the router’s web interface could execute arbitrary commands as root, giving them control of the router.
This step achieved, an attacker could then intercept or modify network traffic, cause denial-of-service conditions, and launch attacks on other assets – some of the affected devices are capable of connecting up to 15 devices at once.
Mike Cotton, senior vice-president of engineering at Digital Defense, said: “Our standard practice is to work in tandem with organisations on a coordinated disclosure effort to facilitate a prompt resolution to a vulnerability.
“The Digital Defense VRT reached out to D-Link, which worked diligently on a patch. We will continue outreach to customers to ensure they are aware and able to take action to mitigate any potential risk introduced by the vulnerability,” he added.
D-Link said it had acknowledged the reports, which were first made to it in August 2020, and that patches for them will be available in mid-December.
The firm declined to recognise another vulnerability, reported at the same time, because a theoretical attacker would need to engineer a way of gaining access to the device to upload a malicious configuration file, making it a low threat once the patched firmware becomes available.
In this e-guide, we will explore the links between ransomware attacks, data breaches and identity theft. First, Nicholas Fearn investigates the phenomenon of the double extortion attack, and shares some insider advice on how to stop them, while we’ll explore the top five ways data backups can protect against ransomware in the first place.
CIO dashboards can be a vital tool for assessing metrics in real time to gain insight on IT performance and support better …
The business response to COVID-19 has accelerated technology adoption, making emerging technologies a more accessible and …
The Open Group is teaming up with a United Nations agency on best practices, guides and standards to show resource-strapped …
Companies looking to introduce security testing earlier into software development must look past myths and understand what to …
The lack of consistent updates (and the open source nature of the stacks) make the Amnesia:33 vulnerabilities difficult to fix as…
In his GitHub post, researcher Oskars Vegeris discussed Microsoft classifying the vulnerability as “Important” rather than “…
Network performance is a top issue among IT teams and remote workers amid the pandemic and can correlate with other technical …
The Apstra acquisition could help Juniper sell networking hardware and software to heterogeneous data centers and large-scale …
Network teams can avoid signal coverage issues by performing different wireless site surveys as they evaluate new spaces, set up …
Colocation facility costs can include anything from power fees and bandwidth service charges to connectivity expenses, change …
In any multi-tenant IT environment, noisy neighbors can be an issue. Here’s a closer look at how the challenges differ in the …
Use this data center selection checklist to make fair and comprehensive comparisons between colocation data center providers …
Raj Verma, CEO of SingleStore, explains why the vendor rebranded from MemSQL and how its platform is more than just an in-memory …
Collibra CEO discusses the importance of data governance for enterprises and how to tie data governance to business terminology …
The enterprise edition of the MySQL database is being enhanced on Oracle Cloud Infrastructure to enable users to run analytics …
All Rights Reserved, Copyright 2000 – 2020, TechTarget
Privacy Policy
Cookie Preferences
Do Not Sell My Personal Info
