Cisco Fixes Critical Flaws in Routers
Monday, August 8, 2016 @ 03:08 PM gHale
Cisco patched security holes in its small business RV series routers.
The RV110W, RV130W and RV215W routers include a default account an attacker could leverage to gain root access to the device. The default account should normally be read-only and not have root privileges.
Cisco also found a critical vulnerability in RV180 and RV180W VPN routers. The flaw affects the web interface and it allows remote, authenticated attackers to execute arbitrary code with root privileges.
The same RV router models end up affected by a remotely exploitable high severity flaw to perform a directory traversal and access arbitrary files on the system.
RV110W, RV130W and RV215W routers also end up plagued by a medium severity command shell injection vulnerability that allows a local attacker to inject arbitrary shell commands and have them executed by the device.
Cisco released firmware updates to address the flaws affecting RV110W, RV130W and RV215W routers, but the company will not issue fixes for the RV180 and RV180W models since they are no longer sold.
The vulnerabilities ended up reported to Cisco by Adam Zielinski and Harri Kuosmanen. Cisco said it is not aware of any attacks involving these weaknesses.