Linksys WAP610N Unauthenticated Root Access Vulnerability Fix Released

Cisco/Linksys has released an update that fixes a remotely exploitable security issue in their Linksys WAP610N product. Exploit code exists (see reference link below). Unauthenticated access to port 1111 on units running affected firmware versions is enough to compromise the box. This is a device for the SMB and consumer market that your employees or customers might have in their homes or offices.

Linksys WAP610N firmware versions 1.0.01 and 1.0.00 are known vulnerable. It is possible other firmware versions are vulnerable as well.

References:
http://www.securenetwork.it/ricerca/advisory/download/SN-2010-08.txt

email: david @ sharpesecurity.com
website: www.sharpesecurity.com
Twitter: twitter.com/sharpesecurity
Twitter: twitter.com/patchmanagement

Share

Leave a Reply