A significant flaw in Cisco's routers has been revealed just weeks after US researchers uncovered the "Moon" worm infecting Cisco-Linksys branded routers.
The Cisco vulnerability, for which a patch was released last week, lies in the web management interface of its RV215W and CVR100W Wireless-N VPN routers. The flaw could allow a remote attacker to take control of the devices.
Cisco said it was not aware of any malicious use of the vulnerability.
Cisco's security advisory confirmed the problem could allow an attacker to hijack the routers and potentially infiltrate company networks.
“The vulnerability is due to improper handling of authentication requests by the web framework. An attacker could exploit this vulnerability by intercepting, modifying and resubmitting an authentication request," the notice said.
"Successful exploitation of this vulnerability could allow an unauthenticated, remote attacker to gain administrative-level access to the web management interface of the affected device.”
Cisco also last week issued fixes for multiple vulnerabilities in its Wireless LAN Controller (WLC) product family, and a flaw in its RV110W Wireless-N VPN firewall product.
The patches follow a report last month from the US SANS Institute that it had found the ‘Moon' worm infecting various models of Cisco Linksys-branded routers.
The self-replicating program infects the routers by exploiting an authentication bypass vulnerability in the E-Series product line.
Belkin is currently the parent company of Linksys, following its purchase from Cisco in 2013.
.png&h=140&w=231&c=1&s=0)
.jpg&w=120&c=1&s=0)
Dayforce Summit Melbourne
Okta Identity Summit
Integrate Expo 2025
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
