Sign In

Communications of the ACM

ACM TechNews

Cisco: Patch Routers Now Against Massive 9.8/10-Severity Security Hole


View as: Print Mobile App Share: Send by email Share on reddit Share on StumbleUpon Share on Hacker News Share on Tweeter Share on Facebook
The company advised enterprise users of its wireless virtual private network and firewall routers to install updates to patch the critical flaw.

Cisco has reported a new critical flaw residing in its Cisco wireless virtual private network and firewall routers.

Credit: sensorstechforum.com

Cisco has advised enterprise users of its wireless virtual private network (VPN) and firewall routers to immediately install updates to patch a critical flaw that remote attackers can exploit to infiltrate a network.

The flaw lets hackers with any browser execute arbitrary code via the Web interface used for managing Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router.

The networking giant said, "The vulnerability is due to improper validation of user-supplied data in the Web-based management interface. An attacker could exploit this vulnerability by sending malicious HTTP requests to a targeted device."

Cisco rated the bug's severity 9.8 out of a possible 10 under the Common Vulnerability Scoring System.

From ZDNet
View Full Article

 

Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA


 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account