acm-header
Sign In

Communications of the ACM

ACM TechNews

Cisco: Patch Routers Now Against Massive 9.8/10-Severity Security Hole


The company advised enterprise users of its wireless virtual private network and firewall routers to install updates to patch the critical flaw.

Cisco has reported a new critical flaw residing in its Cisco wireless virtual private network and firewall routers.

Credit: sensorstechforum.com

Cisco has advised enterprise users of its wireless virtual private network (VPN) and firewall routers to immediately install updates to patch a critical flaw that remote attackers can exploit to infiltrate a network.

The flaw lets hackers with any browser execute arbitrary code via the Web interface used for managing Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router.

The networking giant said, "The vulnerability is due to improper validation of user-supplied data in the Web-based management interface. An attacker could exploit this vulnerability by sending malicious HTTP requests to a targeted device."

Cisco rated the bug's severity 9.8 out of a possible 10 under the Common Vulnerability Scoring System.

From ZDNet
View Full Article

 

Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA


 

No entries found