Menu
What's new
By:
Filters Better Search

ASUS RTAX6000 (88U) Stock vs Merlin 386 security fix question @Merlin

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

A

Agoldstein54

Occasional Visitor
Hi merlin, quick question about your firmware versus the stock asus firmware specifically for the AX 6000 (RT AX 88U) regarding security fixes:

On the asus website for the 88u (RT-AX88U|WiFi 6|ASUS USA), there have been several firmware updates within the last few months that address different security issues with the stock firmware. I noticed in the changelog for 386.3 (not released yet) that you have made changes to prevent the frag attacks which are mentioned in the most recent stock firmware from asus so wont lis again below; but was wondering if you addressed the other issues listed under the 88U copied below from Asus website

"ASUS RT-AX88U Firmware version 3.0.0.4.386.42819
1. Fix VPN GUI issues.
2. Fix WAN connection issues. Special thanks to Yulei Zhang's contribution.
3. Fix AiMesh related bugs.
4. Minor GUI issue fixes.
5. Upgrade dropbear to version 2020.81
6. Fix buffer overflow vulnerability
7. Fix slowloris denial of service attack.
8. Fix authentication bypass vulnerability."

"ASUS RT-AX88U Firmware version 3.0.0.4.386.42095
- Fixed CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686
- Added more icons to the client list
- Improved connection stability
- Fixed DoS vulnerability. Thanks for Tsinghua University NISL's contribution."

Please advise, big fan of the firmware, thanks for all the hard work!
 
42095 was already merged with 386.2_0, as well as the slowloris fix. No idea what the other fixes are, so I don't even know if my firmware was susceptible to these or not - the changelog provides zero info as to what these issues are.
 
You must log in or register to reply here.

Similar threads

F
Release ASUS ZenWiFi XD4 Firmware version 3.0.0.4.388_25041 (2024/09/05)
Replies
4
Views
1K
aardbeix15
A
visortgw
Release ASUS RT-AX82U Firmware version 3.0.0.4.388_24963 2024/07/26
Replies
0
Views
1K
visortgw
visortgw
F
Release ASUS RT-AXE7800 Firmware version 3.0.0.4.388_25058 (2024/08/28)
Replies
0
Views
569
fruitcornbread
F
K
Latest RT-AC68U Asuswrt stock vs Merlin security
Replies
6
Views
3K
KrypteX
K
escape75
RT-AX68U Merlin vs. 3.0.0.4.388_24646
Replies
0
Views
934
escape75
escape75
Similar threads
Thread starter Title Forum Replies Date
A Duckdns on Asus merlin router Asuswrt-Merlin 1
P Accessing remotly Server While Using VPN on Asus Router with Merlin Firmware Asuswrt-Merlin 9
M 802.1q VLAN tagging menu missing for WAN interface (Asus RT-AX86U Pro) Asuswrt-Merlin 4
N WiFi issues with latest version 388.8_2 on ASUS RT-AX88U Asuswrt-Merlin 7
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
E Wireguard can't access devices behind asus router Asuswrt-Merlin 5
H Asus RT-AX58U v2 Merlin: Route all traffic to Pi-hole (running directly on router itself) Asuswrt-Merlin 12
J ASUS GT-AXE16000 CPU usage with VPN on lan machine Asuswrt-Merlin 25
L Can an original 2022 Asus Wrt be safe? Asuswrt-Merlin 25
K How to block LAN access for a wired device on ASUS Merlin (Firmware 3004.388.8_2)? Asuswrt-Merlin 12

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 679 (members: 18, guests: 661)
Top