Jump to content
livebox

Several vulnerabilities detected in Ruckus routers

Recommended Posts

 

 

 

Source: https://www.securitylab.ru/news/503753.php

 

Exploiting the vulnerability allows an unauthorized attacker to remotely take control of a device.

 

A number of vulnerabilities have been detected in Ruckus wireless routers . Their operation allows an unauthorized attacker to remotely take control of the device.

Vulnerabilities were discovered by security researcher Gal Zror. According to Zror, the problems are contained in the web-based user interface software installed in the Unleashed line of routers.

According to the researcher, three vulnerabilities can be exploited to gain superuser rights on the router, providing an attacker with unhindered access to the device and the network. Although these three problems differ in the complexity of their use, only one line of code is enough to exploit the simplest vulnerability.

Having gained full control over the router, an attacker can scan all unencrypted Internet traffic on the network, as well as redirect traffic from users on the network to malicious pages designed to steal credentials.

According to Zror, thousands of vulnerable Ruckus routers are available on the Internet.

He made his findings public at the annual Chaos Communication Congress in Germany. Ruckus has released a software update 200.7.10.202.92 that fixes these vulnerabilities and strongly recommends users update their vulnerable devices.

 

 

  • Upvote 1

Share this post


Link to post
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.


×
×
  • Create New...