Guru3D.com
  • HOME
  • NEWS
    • Channels
    • Archive
  • DOWNLOADS
    • New Downloads
    • Categories
    • Archive
  • GAME REVIEWS
  • ARTICLES
    • Rig of the Month
    • Join ROTM
    • PC Buyers Guide
    • Guru3D VGA Charts
    • Editorials
    • Dated content
  • HARDWARE REVIEWS
    • Videocards
    • Processors
    • Audio
    • Motherboards
    • Memory and Flash
    • SSD Storage
    • Chassis
    • Media Players
    • Power Supply
    • Laptop and Mobile
    • Smartphone
    • Networking
    • Keyboard Mouse
    • Cooling
    • Search articles
    • Knowledgebase
    • More Categories
  • FORUMS
  • NEWSLETTER
  • CONTACT

New Reviews
GALAX GeForce RTX 4070 Ti EX White review
Cougar Terminator gaming chair review
G.Skill TridentZ5 RGB DDR5 7200 CL34 2x16 GB review
ASUS TUF Gaming B760-PLUS WIFI D4 review
Netac NV7000 2 TB NVMe SSD Review
ASUS GeForce RTX 4080 Noctua OC Edition review
MSI Clutch GM51 Wireless mouse review
ASUS ROG STRIX B760-F Gaming WIFI review
Asus ROG Harpe Ace Aim Lab Edition mouse review
SteelSeries Arctis Nova Pro Headset review

New Downloads
HWiNFO Download v7.42
Intel ARC graphics Driver Download Version: 31.0.101.4257
CrystalDiskInfo 9.0.0 Beta4 Download
AIDA64 Download Version 6.88
GeForce 531.41 WHQL driver download
AMD Radeon Software Adrenalin 23.3.2 WHQL download
GeForce 531.29 WHQL driver download
AMD Ryzen Master Utility Download 2.10.2.2367
AMD Radeon Software Adrenalin 23.3.1 WHQL download
Display Driver Uninstaller Download version 18.0.6.1


New Forum Topics
Amernime Zone AMD Software: Adrenalin / Pro Driver - Release Discovery 22.12.2 WHQL Info Zone - gEngines, Ray Tracing, DLSS, DLAA, TSR, FSR, XeSS, DLDSR etc. Impending 5800x3d purchase :) The Last of Us Part I PC Port Receives 77% negative ratings on Steam, due to poor optimization AMD Software: Adrenalin Edition 22.40.43.05 for The Last of Us™ Part 1 Release Notes Uninstalling drivers 7900XT Increased post time NVIDIA's Upcoming RTX 4070 Graphics Card to Cost $599 Flickering during gaming Nvidia Cracks Down on Counterfeit Graphics Cards in Collaboration with Chinese E-commerce Platforms




Guru3D.com » News » Linksys-routers Vulnerable due to multiple cgi-scripts

Linksys-routers Vulnerable due to multiple cgi-scripts

by Hilbert Hagedoorn on: 12/08/2015 04:27 PM | source: | 6 comment(s)
Linksys-routers Vulnerable due to multiple cgi-scripts

Linksys routers ranging from model EA6100 up-to EA6300 are Vulnerable and exploitable due to multiple cgi-scripts. The scripts can be used by an unauthorized attacker, which can get them access to the master password of the device.

Linksys' EA6100-6300 wireless routers will need a patch reports the register: KoreLogic has published an advisory saying that CGI scripts in the admin interface open the device up to remote attackers. Since it's a consumer product the risk is high that most of the devices out there never would be patched. The bad scripts include the bootloader, sysinfo.cgi, ezwifi_cfg.cgi, qos_info.cgi and others.

The disclosure is attributed to Matt Bergin of KoreLogic. His proof-of-concept code provided with the advisory includes testing the target device to see if its admin password remains set to default. At the time of writing, Linksys has not published a fix, so it's at the very least recommended to shut down remote admin access to any devices you're in contact with.



Linksys-routers Vulnerable due to multiple cgi-scripts Linksys-routers Vulnerable due to multiple cgi-scripts




« Radeon Technology Group - Tech update December 2015 · Linksys-routers Vulnerable due to multiple cgi-scripts · MSI Afterburner 4.2.0 Updated »

2 pages 1 2


Ferrum Master
Unregistered



#5203266 Posted on: 12/08/2015 06:55 PM
EA-6300V1?? that's also same as EA6400 is also affected?

lucidus
Senior Member



Posts: 11835
Joined: 2011-12-31

#5203270 Posted on: 12/08/2015 07:07 PM
Ugh .. I really should replace mine with an Asus or TP-link.

nexxusting
Senior Member



Posts: 191
Joined: 2015-08-21

#5203364 Posted on: 12/08/2015 11:45 PM
Pfsense ftw.

dirtm
Junior Member



Posts: 7
Joined: 2015-08-04

#5203546 Posted on: 12/09/2015 02:42 PM
My decision to stay away from Linksys for a while after the 2012 Cisco Connect Cloud saga has been well founded, knew these guys needed to learn a few things before they could be trusted again.

Corrupt^
Senior Member



Posts: 7186
Joined: 2005-12-02

#5203585 Posted on: 12/09/2015 04:48 PM
Ugh .. I really should replace mine with an Asus or TP-link.


If you can, do so. Just moved, I'm on my 2nd ASUS router running DD-WRT. Gave my parents the old one considering I put some scripts and what not in place to clear old stuff and reboot once a week.

2 pages 1 2


Post New Comment
Click here to post a comment for this news story on the message forum.


Guru3D.com © 2023