[SECURITY] Unauthenticated LAN remote code execution in AsusWRT

Thread starter gLWxSJeSsEA
Start date Jan 25, 2018

SNBForums Code of Conduct

SNBForums is a community for everyone, no matter what their level of experience.

Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

The rules are simple: Be patient, be nice, be helpful or be gone!

gLWxSJeSsEA

Occasional Visitor

Jan 25, 2018

https://raw.githubusercontent.com/pedrib/PoC/master/advisories/asuswrt-lan-rce.txt

Seems to allow remote code execution as root by an attacker on the local LAN and is reported to affect every version before v3.0.0.4.384.10007.

RMerlin

Asuswrt-Merlin dev

Staff member

Jan 25, 2018

Already fixed in 384.3 test builds and on 380.69's git repo.

You must log in or register to reply here.

Similar threads

News 'Critical' vulnerability in OpenSSH uncovered, affects almost all Linux systems

Replies: 1

Views: 695

Jul 2, 2024

PR3MIUM

Locked

Release Asuswrt-Merlin 3004.388.8_2 is now available

22 23 24

Replies: 469

Views: 58K

Aug 20, 2024

aitor_mtb

CVE-2024-3094 - XZ Utils Backdoor - addtional info

Replies: 12

Views: 1K

Apr 18, 2024

coxhaus

Locked

Beta Asuswrt-Merlin 3006.102.1 Beta is now available for WIfi 7 devices

3 4 5

Replies: 97

Views: 14K

Jun 28, 2024

RMerlin

sbnMerlin 1.2.6 - Network Isolation Tool based on Guest Networks, June 26 2024

6 7 8

Replies: 149

Views: 17K

Sep 6, 2024

Underskore

Similar threads

Thread starter	Title	Forum	Replies	Date
	Security Log to see who is…	Asuswrt-Merlin	3	Sep 1, 2024
	A question about WireGuard security	Asuswrt-Merlin	25	Apr 9, 2024
M	OpenVPN / site to site with special security/routing constraints	Asuswrt-Merlin	7	Apr 8, 2024
M	Isolating home security cameras and providing remote access?	Asuswrt-Merlin	5	Mar 8, 2024
T	Security Features Merlin VS Official	Asuswrt-Merlin	7	Feb 24, 2024
T	Security Key or PassKey support for admin login	Asuswrt-Merlin	1	Jan 26, 2024
	Saved settings and jffs get blocked by Chrome & Windows security	Asuswrt-Merlin	13	Dec 17, 2023
	Regularly lose lan connections	Asuswrt-Merlin	3	Thursday at 3:56 AM
T	10G/2.5G LAN Speed Issues	Asuswrt-Merlin	10	Oct 29, 2024
J	ASUS GT-AXE16000 CPU usage with VPN on lan machine	Asuswrt-Merlin	25	Oct 13, 2024

Similar threads

Security Log to see who is…
- Started by Nas.CloudBusinessPortal
- Sep 1, 2024
- Replies: 3
Asuswrt-Merlin
A question about WireGuard security
- Started by TheLyppardMan
- Apr 9, 2024
- Replies: 25
Asuswrt-Merlin
M
OpenVPN / site to site with special security/routing constraints
- Started by MarkusI
- Apr 8, 2024
- Replies: 7
Asuswrt-Merlin
M
Isolating home security cameras and providing remote access?
- Started by MadPup
- Mar 8, 2024
- Replies: 5
Asuswrt-Merlin
T
Security Features Merlin VS Official
- Started by Tammi
- Feb 24, 2024
- Replies: 7
Asuswrt-Merlin
T
Security Key or PassKey support for admin login
- Started by totem
- Jan 26, 2024
- Replies: 1
Asuswrt-Merlin
Saved settings and jffs get blocked by Chrome & Windows security
- Started by alan6854321
- Dec 17, 2023
- Replies: 13
Asuswrt-Merlin
Regularly lose lan connections
- Started by LoPro
- Thursday at 3:56 AM
- Replies: 3
Asuswrt-Merlin
T
10G/2.5G LAN Speed Issues
- Started by Traveler2100
- Oct 29, 2024
- Replies: 10
Asuswrt-Merlin
J
ASUS GT-AXE16000 CPU usage with VPN on lan machine
- Started by Jerky_san
- Oct 13, 2024
- Replies: 25
Asuswrt-Merlin

Email Link

Latest threads

G
Omnidirectional WAP
- Started by Glom
- Today at 1:41 AM
- Replies: 0
Other LAN and WAN
P
ROG 98 Pro: Fire Stick 4K Max won’t connect to WiFi 6E???
- Started by Poseidon
- Yesterday at 3:44 PM
- Replies: 2
ASUS BE Routers & Adapters (Wi-Fi 7)
Z
Dual WAN + Dual Firewall
- Started by Zim
- Yesterday at 2:11 PM
- Replies: 10
Asuswrt-Merlin
R
Help with RT-ac88u network switch issues - causing reboot
- Started by rkalinka
- Yesterday at 1:25 PM
- Replies: 0
ASUS AC Routers & Adapters (Wi-Fi 5)
TP-Link routers are being taken over by botnet
- Started by TheLostSwede
- Yesterday at 12:59 PM
- Replies: 3
General Wi-Fi Discussion

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 796 (members: 11, guests: 785)

Welcome To SNBForums

SNBForums is a community for anyone who wants to learn about or discuss the latest in wireless routers, network storage and the ins and outs of building and maintaining a small network.

If you'd like to post a question, simply register and have at it!

While you're at it, please check out SmallNetBuilder for product reviews and our famous Router Charts, Ranker and plenty more!

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Top

Search

Search

[SECURITY] Unauthenticated LAN remote code execution in AsusWRT

gLWxSJeSsEA

Occasional Visitor

RMerlin

Asuswrt-Merlin dev

Similar threads

Similar threads

Latest threads

Support SNBForums w/ Amazon

Sign Up For SNBForums Daily Digest

Members online