Menu
What's new
By:
Filters Better Search

ASUSWRT 3.0.0.4.376_1071 - LAN Backdoor Command Execution

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

bsiegel

bsiegel

New Around Here
Just wanted to give everyone a heads-up. A vulnerability in what appears to be all 376 builds of the ASUS GPL firmware was disclosed on 4 Jan 2015 that allows remote command execution as root from the LAN side. Details are here: (Edit: URL redacted - do not post complete exploit code or links to it. -RM)

I verified the vulnerable code is present in both master (EDIT: URLs redacted -RM)
 
Last edited by a moderator:
I already posted a way to secure routers in this thread:

http://forums.smallnetbuilder.com/showthread.php?t=21774

Do not post links that point to exploit code that could be used by anyone to actively exploit a device, especially not while the manufacturer hasn't even had a chance to address the issue yet, or you will expose everyone using vulnerable devices.

Whoever disclosed that issue needs to get a grip on responsible disclosure. At least the CVE guys have this right, where they don't disclose the details until the manufacturer has had a reasonable amount of time to address the issue. In this case, there isn't even a CVE ID assigned yet...
 
Ah, sorry I did some searches but must not have hit the right keywords to locate that thread. Maybe consider making it sticky, at least until a build with a fix becomes available?

It may be some time until / if it is assigned a CVE, but for now the vulnerability is at least catalogued in OSVDB (specific details are omitted). Thanks for keeping on top of this Merl.
 
Last edited:
bsiegel said:
Ah, sorry I did some searches but must not have hit the right keywords to locate that thread. Maybe consider making it sticky, at least until a build with a fix becomes available?

It may be some time until / if it is assigned a CVE, but for now the vulnerability is at least catalogued in OSVDB (specific details are omitted). Thanks for keeping on top of this Merl.
Click to expand...

No problem. I also know that Asus are aware and have already discussed amongst themselves on how best to resolve this.

Probably a good idea to make it a temporary sticky, at least until an official fix comes along.
 
You must log in or register to reply here.

Similar threads

D
AI Protection Exploit asuswrt 3.0.0.4.376_1071 LAN Backdoor Command Execution (CVE-2014-0583)
Replies
5
Views
6K
bblearner
B
WQ6N
UDP port 9999 infosvr Security Concerns?
Replies
2
Views
5K
WQ6N
WQ6N
RMerlin
  • Locked
[Beta] Asuswrt-Merlin 384.7 Beta is now available
16 17 18
Replies
341
Views
79K
RMerlin
RMerlin
RMerlin
  • Locked
[Beta 384/NG] Asuswrt-Merlin 384.3 Beta is now available
15 16 17
Replies
330
Views
79K
RMerlin
RMerlin
RMerlin
SECURITY: LAN-side security hole - mitigation
3 4 5
Replies
80
Views
47K
ColinTaylor
C
Similar threads
Thread starter Title Forum Replies Date
RMerlin Release Asuswrt-Merlin 3004.388.8_4 is now available Asuswrt-Merlin 72
RMerlin Release Asuswrt-Merlin 3006.102.2 is now available for Wifi 7 devices Asuswrt-Merlin 62
B Unable to establish VPN connection to my PiVPN (ovpn) from my Asus RT-AC86U running Asuswrt-Merlin 386.14 Asuswrt-Merlin 1
F Several Questions Re:Asuswrt-Merlin Feature Implementation Asuswrt-Merlin 2
Yota How to enable port randomization in Asuswrt-Merlin? Asuswrt-Merlin 4
RMerlin Beta Asuswrt-Merlin 3006.102.2 Beta is now available for Wifi 7 devices Asuswrt-Merlin 70
J Does Asuswrt-Merlin support AiMesh over Wifi? Asuswrt-Merlin 4
Siff Printing from Guest Network (ASUSWRT-Merlin 3004.388.8_2) Asuswrt-Merlin 5
Siff Setting dnsmasq on Asuswrt-Merlin Asuswrt-Merlin 8
Rob Bowlby fwupdate.asuswrt-merlin.net - diversion.ch Down? Asuswrt-Merlin 7

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 898 (members: 32, guests: 866)
Top