Well, it looks to me like they've figured out how to get a root shell open on various Linksys routers. What that means, essentially, is that the attacker can make that little Internet-connected computer do pretty much whatever he or she wants it to do. Packet capture and forwarding of all your Internet traffic to an external server, spamming, you name it and it's theoretically possible.
What isn't clear (at least to me) is whether the attack is successful from the outside. The demo is from the LAN. On Mon, Jan 14, 2013 at 10:07 PM, David Lum <david....@nwea.org> wrote: > I am not smart enough to know what this means other than to tell any of > my users who have this to update to the latest firmware when it comes out. > **** > > http://www.net-security.org/secworld.php?id=14234**** > > ** ** > > Yeah, they can see stuff on the router, ASP pages, etc. I would assume a > VPN link is vulnerable, or no? I mean, I know what this exploit does, but I > don’t know what it allows the exploiter to DO. I am never in a router, so > can only guess it can spoof DNS, etc.**** > > *David Lum* > Sr. Systems Engineer // NWEATM > Office 503.548.5229 //* *Cell (voice/text) 503.267.9764**** > > ** ** > > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ > ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ > > --- > To manage subscriptions click here: > http://lyris.sunbelt-software.com/read/my_forums/ > or send an email to listmana...@lyris.sunbeltsoftware.com > with the body: unsubscribe ntsysadmin > ~ Finally, powerful endpoint security that ISN'T a resource hog! ~ ~ <http://www.sunbeltsoftware.com/Business/VIPRE-Enterprise/> ~ --- To manage subscriptions click here: http://lyris.sunbelt-software.com/read/my_forums/ or send an email to listmana...@lyris.sunbeltsoftware.com with the body: unsubscribe ntsysadmin
