• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 26th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security

ASUS routers can be easily hacked due to vulnerable firmware

January 13th, 2015 Waqas Security 0 comments
ASUS routers can be easily hacked due to vulnerable firmware
Share on FacebookShare on Twitter

VULNERABLE FIRMWARE MAKES ASUS ROUTERS SUBJECT TO ATTACK.

Wireless router models running the Asuswrt firmware are vulnerable to attacks where hackers can completely compromise the devices if the attack is launched from within the local networks of the routers.

Infosvr, the service running on the routers, is used by the Asus Wireless Router Device Discovery Utility tools and it is the source of this flaw. Infosvr listens to packets that are sent to the router’s local are network interface over a UDO broadcast port 9999.

Hackers can’t make use of this flaw of the internet but they can control the routers if:

* They manage to get into a device connected to the routers

* They manage to connect to the LAN in one way or another

* They manage to get to any local computer that already has the malware on it.

Routers are one of the most sought after target for hackers because once they compromise a router, they can get access to networks and get into other devices on the network. Routers are also easier to hack since they have no virus detection programs running on them.

This service runs with root privileges and contains an unauthenticated command execution vulnerability, security researcher Joshua Drake, who found the vulnerability,�said on his GitHub account.

Controlling routers for a hacker means being able to monitor and modify all incoming and outgoing traffic for every other device connected to those routers.

Asus has yet to release an update to fix the issue with the routers but there are some ways to block such exploits in the meantime until firmware updates are released. One of them is to create a firewall rule that blocks UDP port 9999 on the affected router like this:

* Connect to the router via Telnet

* Type iptables -I INPUT -p udp dport 9999 -j DROP (without the quotes)

This will block the said port but it will have to be redone with every reboot of the router.

Another option that is more permanent would be to upgrade to version 376.49_5 of the firmware. This version actually contains a fix for the exploit.

  • Tags
  • ASUS
  • Firmware
  • Flaw
  • hacking
  • LAN
  • security
  • Vulnerability
Facebook Twitter LinkedIn Pinterest
Previous article Someone Hacked Glorious Leader, Kim Jong-un Game and Destroyed it
Next article List of Eight Popular websites That are Banned in China
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
TikTok vulnerability allowed hackers to access users' phone numbers

TikTok vulnerability allowed hackers to access users' phone numbers

Watch out as new Android malware spreads through WhatsApp

Watch out as new Android malware spreads through WhatsApp

SonicWall hacked after 0-day flaws exploited by hackers

SonicWall hacked after 0-day flaws exploited by hackers

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
TikTok vulnerability allowed hackers to access users' phone numbers
Security

TikTok vulnerability allowed hackers to access users' phone numbers

46
Why you should never use free a VPN
Drones

Why you should never use free a VPN

34
Watch out as new Android malware spreads through WhatsApp
Security

Watch out as new Android malware spreads through WhatsApp

261

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us