Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4

Grok Headline matches for Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4

[ RSTACK Public Security Advisory ]
Remote DOS against Linksys PSUS4

[ RSTACK Public Security Advisory ]
Remote DOS against Linksys PSUS4 02/05/2005 09:38 PM
laurent oudot (Feb 03 2005)

"Tech consultant discovers that Linksys
WRT54G allows remote, over-the-Internet
administration login even when remote
management is turned off"

"Tech consultant discovers that Linksys
WRT54G allows remote, over-the-Internet
administration login even when remote
management is turned off" 06/03/2004 12:21 PM

MADSHEEP-05SA (security advisory):
WebHints <= v1.03 Remote Command
Execution Vulnerability

MADSHEEP-05SA (security advisory):
WebHints <= v1.03 Remote Command
Execution Vulnerability 06/17/2005 04:53 PM
Posted by Emanuele \, Tuesday, 14 June

Honeyd Security Advisory 2004-001:
Remote Detection Via Simple Probe Packet

Honeyd Security Advisory 2004-001:
Remote Detection Via Simple Probe Packet 01/22/2004 02:58 AM
Niels Provos (Jan 21 2004)

ZH2004-08SA (security advisory): OWLS
1.0 Remote arbitrary files retrieving

ZH2004-08SA (security advisory): OWLS
1.0 Remote arbitrary files retrieving 02/18/2004 12:11 PM
ZetaLabs (Feb 18 2004)

ZH2004-06SA (security advisory):
ShopCartCGI v2.3 Remote arbitrary file
retrieving

ZH2004-06SA (security advisory):
ShopCartCGI v2.3 Remote arbitrary file
retrieving 02/17/2004 01:05 PM
ZetaLabs (Feb 17 2004)

ZH2004-01SA (security advisory): Web
Blog 1.1 Remote arbitrary files
retrieving

ZH2004-01SA (security advisory): Web
Blog 1.1 Remote arbitrary files
retrieving 01/28/2004 03:36 PM
ZetaLabs (Jan 28 2004)

iDEFENSE Security Advisory 09.16.04:
Ipswitch WhatsUp Gold Remote Denial of
Service Vulnerability

iDEFENSE Security Advisory 09.16.04:
Ipswitch WhatsUp Gold Remote Denial of
Service Vulnerability 09/16/2004 09:22 PM
customer service mailbox (Sep 16 2004)

iDEFENSE Security Advisory 02.17.04:
Ipswitch IMail LDAP Daemon Remote Buffer
Overflow

iDEFENSE Security Advisory 02.17.04:
Ipswitch IMail LDAP Daemon Remote Buffer
Overflow 02/17/2004 06:25 PM
iDefense Labs (Feb 17 2004)

iDEFENSE Security Advisory 12.21.04:
Hewlett Packard HP-UX ftpd Remote Buffer
Overflow Vulnerability

iDEFENSE Security Advisory 12.21.04:
Hewlett Packard HP-UX ftpd Remote Buffer
Overflow Vulnerability 12/22/2004 01:09 AM
customer service mailbox (Dec 21 2004)

[Full-Disclosure] iDEFENSE Security
Advisory 05.27.04: 3Com OfficeConnect
Remote 812 ADSL Router Authentication
Bypass Vulnerability

[Full-Disclosure] iDEFENSE Security
Advisory 05.27.04: 3Com OfficeConnect
Remote 812 ADSL Router Authentication
Bypass Vulnerability 05/30/2004 01:49 AM
idlabs-advisories_at_idefense.com (May 27 2004)

Re: [Full-Disclosure] iDEFENSE Security
Advisory 05.27.04: 3Com OfficeConnect
Remote 812 ADSL Router Authentication
Bypass Vulnerability

Re: [Full-Disclosure] iDEFENSE Security
Advisory 05.27.04: 3Com OfficeConnect
Remote 812 ADSL Router Authentication
Bypass Vulnerability 05/28/2004 12:24 PM
Seth Alan Woolley (May 27 2004)

[Full-Disclosure] iDEFENSE Security
Advisory 05.26.04: 3Com OfficeConnect
Remote 812 ADSL Router Telnet Protocol
Denial of Service Vulnerability

[Full-Disclosure] iDEFENSE Security
Advisory 05.26.04: 3Com OfficeConnect
Remote 812 ADSL Router Telnet Protocol
Denial of Service Vulnerability 05/26/2004 03:00 PM
idlabs-advisories_at_idefense.com (May 26 2004)

ZH2004-02SA (security advisory): PJ CGI
Neo review (NeoBoard review) Remote
arbitrary file retrieving

ZH2004-02SA (security advisory): PJ CGI
Neo review (NeoBoard review) Remote
arbitrary file retrieving 01/01/2005 04:55 AM
ZetaLabs (Jan 29 2004)

Linksys routers may be open to remote
sniffing

Linksys routers may be open to remote
sniffing 06/04/2004 05:57 AM

Linksys WiFi Gateway Remote Attack Risk
Discovered

Linksys WiFi Gateway Remote Attack Risk
Discovered 06/03/2004 08:55 AM

Linksys Posts Beta Firmware to Correct
Remote Admin Problem

Linksys Posts Beta Firmware to Correct
Remote Admin Problem 06/04/2004 02:13 PM
Linksys has posted beta firmware for its WRT54G that closes a potential remote access hole in its security: The initial report indicated that remote administration of the WRT54G was possible out of the box. The consultant who reported the problem checked other WRT54Gs: if firewall protection is turned on (Linksys says this is the default and users confirm), then the remote issue is non-existent. However, some of the units that the consultant purchased to test had firewall service turned off out of the box. A Linksys spokesperson said that this release is labeled beta because other functionality changes are in progress and not yet finalized. Linksys' official statement reads, "For those rare few that do disable the firewall and turn off remote admin on their WRT54G, Linksys advises those users to download the latest beta firmware which is posted on the Linksys website." I just purchased a WRT54G to test out its default configuration, and I can confirm that I received a unit with firmware v2.02.2 (which predates the 2.02.7 March 2004 release), and that its firewall service enabled....

Advisory 09/2004: More CVS remote
vulnerabilities

Advisory 09/2004: More CVS remote
vulnerabilities 06/09/2004 02:01 PM
Stefan Esser (Jun 09 2004)

Advisory 07/2004: CVS remote
vulnerability

Advisory 07/2004: CVS remote
vulnerability 05/19/2004 01:33 PM
Stefan Esser (May 18 2004)

Advisory 01/2004: 12 x Gaim remote
overflows

Advisory 01/2004: 12 x Gaim remote
overflows 01/26/2004 01:55 PM
Stefan Esser (Jan 26 2004)

Advisory 08/2004: Subversion remote
vulnerability

Advisory 08/2004: Subversion remote
vulnerability 05/19/2004 01:33 PM
Stefan Esser (May 18 2004)

Advisory 11/2004: PHP memory_limit
remote vulnerability

Advisory 11/2004: PHP memory_limit
remote vulnerability 07/14/2004 12:03 PM
Stefan Esser (Jul 13 2004)

@(#)Mordred Labs advisory - Remote DoS
in PostgreSQL <= 7.2.2

@(#)Mordred Labs advisory - Remote DoS
in PostgreSQL <= 7.2.2 03/13/2003 10:22 AM
sir.mordred_at_hushmail.com (Mar 12 2003)

Advisory 10/2004: Chora CVS/SVN Viewer
remote vulnerability

Advisory 10/2004: Chora CVS/SVN Viewer
remote vulnerability 06/14/2004 11:52 AM
Stefan Esser (Jun 13 2004)

Advisory: Heimdal kadmind version4
remote heap overflow

Advisory: Heimdal kadmind version4
remote heap overflow 05/06/2004 12:58 PM
Evgeny Demidov (May 05 2004)

Re: Multiple Remote Issues in Applied
Watch IDS Suite (advisory attached)

Re: Multiple Remote Issues in Applied
Watch IDS Suite (advisory attached) 12/02/2003 12:32 AM
Steven M. Christey (Dec 01 2003)

@stake advisory: HP dced Remote Command
Execution Multiple OSes

@stake advisory: HP dced Remote Command
Execution Multiple OSes 07/22/2004 04:42 PM
Advisories (Jul 22 2004)

[SNS Advisory No.77] Usermin Remote
Arbitrary Shell Command Execution
Vulnerability

[SNS Advisory No.77] Usermin Remote
Arbitrary Shell Command Execution
Vulnerability 09/07/2004 06:23 PM
snsadv (Sep 07 2004)

The Linksys WRT54G "security problem"
doesn't exist

The Linksys WRT54G "security problem"
doesn't exist 06/04/2004 06:43 PM
David Pipe (Jun 04 2004)

Re: The Linksys WRT54G "security
problem" doesn't exist

Re: The Linksys WRT54G "security
problem" doesn't exist 06/05/2004 01:15 PM
caldcv_at_students.fccj.org (Jun 04 2004)

Linksys Sells Enterprise Security by
Subscription

Linksys Sells Enterprise Security by
Subscription 06/03/2004 10:19 AM
Linksys offers WPA Enterprise for $4.95 per month per user: Linksys has partnered with Wireless Security Corporation (WSC) to offer purchasers of its WAP54G access point full enterprise-scale 802.1X authentication using WPA (Wi-Fi Protected Access) TKIP encryption keys. The deal allows Linksys purchasers to sign up during the WAP54G setup stage. The cost is $4.95 per user per month, or $3.99 per month per user for five or more users, the same rate offered directly through WSC. Vice president of marketing for WSC, Stu Elefant, said, "When you buy a WAP54G or CompUSA, it’s going to have Linksys Wireless Guard on the box, and a flyer in the box." The new setup for the WAP54G shows a range of security from weakest to strongest. Weakest is no encryption, followed by WEP, WPA Personal, WPA Enterprise, and Linksys Wireless Guard, their branded name for the resold WSC service. The WAP54G was chosen as the first device, WSC executives said, because it's a no-frills access point typically used on networks with slightly more technical resources in house. 802.1X works over the Internet just as readily as it does over a local network using most consumer-grade access points: the access point allows a pass-through of 802.1X authentication (acting as the "authenticator" in that transaction). WSC maintains the RADIUS equipment as part of their operations. With 802.1X authentication, each user on a network logs in with a unique user name and password. WSC allows management of these accounts via a secure Web interface to their system. Users cannot access the local network until a back-end authentication server confirms their credentials, notifies the access point, and assigns the user's computer a unique key, which is a WPA TKIP key in this case. The system can also rotate keys regularly to each user, further decreasing the chance of network compromise. 802.1X's method of communication is EAP (Encapsulated Authentication Protocol), which itself is not secured. WSC uses the Protected EAP (PEAP) flavor of embedding EAP inside an encrypted session to keep the authentication process secure from snooping. The Linksys and WSC system requires use of a custom client--currently available only for Windows XP and 200--for two reasons: first, WSC designed both automatic and manual fallover that switches to a static WPA key in the event of a disruption in Internet access or RADIUS server access, instead of a broken network or no encryption; and second, only Windows...

Local e-government interests represented
at Advisory Panel on Public Sector Info

Local e-government interests represented
at Advisory Panel on Public Sector Info 09/21/2004 03:14 AM
PublicTechnology.net Sep 21 2004 7:30AM GMT

Linksys Routers Administrative Web
Interface Access Security Issue

Linksys Routers Administrative Web
Interface Access Security Issue 06/21/2004 09:27 AM
“The issue has been reported in the following products: Linksys WRT54G (firmware release 2.02.7), Linksys BEFSR41 ver.3…Other products and firmware releases may also be affected. The vendor has released a beta fix for the WRT54G product.

Google Lockergnome

Security Advisory

Security Advisory 06/05/2005 11:21 PM

RE: Microsoft Security Advisory MS
03-007

RE: Microsoft Security Advisory MS
03-007 03/19/2003 10:25 PM
Brett Moore (Mar 18 2003)

rsnapshot Security Advisory 001

rsnapshot Security Advisory 001 04/11/2005 08:25 PM
Posted by security_at_rsnapshot.org, Apr 10 2005

rsync security advisory (fwd)

rsync security advisory (fwd) 12/04/2003 01:17 PM
Andrea Barisani (Dec 04 2003)

Security Advisory: FreeBSD local DoS

Security Advisory: FreeBSD local DoS 06/25/2004 06:50 PM
Marceta Milos (Jun 24 2004)

Overseas Security Advisory Council

Overseas Security Advisory Council 05/02/2004 01:29 AM
ordered the demolition of all churches in the state .. Nigerian churches to be destroyed .. church demolition month .. ordered

ds-osac.org/view.cfm?KEY=7E4251454656&type=2B170C1E0A3A0F162 820
track this site | 4 links

Grok Description matches for Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4
GrokA matches for Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4

13 New Windows Security Vunerabilities

13 New Windows Security Vunerabilities 02/05/2005 09:36 PM
Slashdot Feb 5 2005 3:53PM GMT

Fuse Talk Vunerabilities

Fuse Talk Vunerabilities 05/05/2004 12:29 PM
Stuart Jamieson (May 05 2004)

Linux on the Linksys wrt54g 0.3

Linux on the Linksys wrt54g 0.3 12/07/2003 07:11 AM
A Linux distribution for the Linksys wrt54g wireless access point.

Linux on the Linksys wrt54g 0.5

Linux on the Linksys wrt54g 0.5 06/01/2004 12:01 PM
A Linux distribution for the Linksys wrt54g wireless access point.

Hacking the Linksys WRT54G

Hacking the Linksys WRT54G 06/01/2004 07:24 AM

Linksys WRT54G - Advice for european
users

Linksys WRT54G - Advice for european
users 06/07/2004 01:53 PM
Christer Palm (Jun 05 2004)

RE: Linksys WRT54G - Advice for european
users

RE: Linksys WRT54G - Advice for european
users 06/07/2004 11:51 PM
Connor, Ethan M. W (Jun 07 2004)

Linksys WRT54g, AirPort Express, and
iTunes

Linksys WRT54g, AirPort Express, and
iTunes 07/28/2004 11:00 AM
I have a G4 iMac and a G4 Aluminum PowerBook. I use a Linksys router/wireless port as my on-ramp for the PowerBook when I want to browse the internet from the comfort of my living room. All my music is on an external drive at...

Additional information on WRT54G
administration page

Additional information on WRT54G
administration page 06/02/2004 05:01 PM
Alan W. Rateliff, II (Jun 02 2004)

RE: Additional information on WRT54G
administration page

RE: Additional information on WRT54G
administration page 06/02/2004 05:01 PM
Mike Riella (Jun 02 2004)

Re: Linksys WRT54G Denial of Service
Vulnerability

Re: Linksys WRT54G Denial of Service
Vulnerability 12/04/2003 02:25 PM
Michael Renzmann (Dec 03 2003)

LinkSys WRT54G administration page
availble to WAN

LinkSys WRT54G administration page
availble to WAN 05/31/2004 05:12 PM
Alan W. Rateliff, II (May 31 2004)

Re: LinkSys WRT54G administration page
availble to WAN

Re: LinkSys WRT54G administration page
availble to WAN 06/01/2004 01:42 PM
Steffen Mueller (Jun 01 2004)

Change Your Linksys WRT54G Admin
Password Right Now!

Change Your Linksys WRT54G Admin
Password Right Now! 06/02/2004 01:16 PM
Tech consultant discovers that Linksys WRT54G allows remote, over-the-Internet administration login even when remote management is turned off: Because all broadband gateway vendors ship their equipment with default passwords like public or admin, this vulnerability is moderately critical according to the Secunia security consultants. An automated attack could scan millions of home broadband network addresses and feed them the WRT54G Web login sequence. With remote administrative access, the most that could happen is vandalism: the Linksys doesn't provide tools via its Web interface for packet sniffing, but someone could corrupt the setup and lock a user out by changing the password, requiring a hard reset. Also, Linksys' Web form appears to send the WEP or WPA password as hidden password text in a Web form, but that text is unencrypted in the HTML source, which can easily be viewed....

Linksys WRT54G Denial of Service
Vulnerability

Linksys WRT54G Denial of Service
Vulnerability 12/03/2003 07:30 PM
test_at_techcentric.net (Dec 03 2003)

Linksys WRT54G Wireless-G Broadband
Router Easily Exploited

Linksys WRT54G Wireless-G Broadband
Router Easily Exploited 06/03/2004 01:35 PM

Heads up, ye owners of the popular Linksys WRT54G Wireless-G Broadband Router. Even if you disable remote administration, the router will still allow users sharing your WiFi network to access administration web pages. That's not the end of the world unless you haven't changed your admin password, which if you're like most of us, coddled by fire-and-forget technology, you probably haven't. If you aren't taking any more steps to secure your router, at least do yourself a favor and change the default password to something else, preferably not the name of a pet, child, or the lady down the hall you've been sleeping with that you think, hey, nobody knows about but really, seriously, we all totally know.
Read [InternetNews via /.]

Update: Looks like it's not quite as bad as it could be, as the exploit only works if the built-in firewall has been disabled (it defaults to on). Still, wouldn't this be a great time to verify your settings?
Read [LinksysInfo]

broadband » News » Get More From Your
Router - Tinkering with modified WRT54G
firmware

broadband » News » Get More From Your
Router - Tinkering with modified WRT54G
firmware 02/14/2004 08:03 PM
http://www.broadbandreports.com/shownews/38267 Written by Karl BodeA fairly common VoIP complaint (depending on configuration) has been choppy communications when users are throttling their broadband connection. To that end, users are tinkering with modified router firmware upgrades to incorporate bandwidth management and a host of other free improvements. This thread in our VoIP forum outlines how one user obtained the quality of service he was looking for with a Linksys WRT54G and...

Linksys WRT54G Wireless-G Router,
Notebook Adapter, $20 Gift Certificate
for $88

Linksys WRT54G Wireless-G Router,
Notebook Adapter, $20 Gift Certificate
for $88 08/04/2004 01:31 PM

Okay, this on is a little hard to follow, but it's worth it, so stick with me. Amazon has the Linksys WRT54G Wireless-G router (the one that runs Linux that you can flash with the magic firmware to make it do all sorts of interesting tricks) bundled with a Wireless-G notebook card for $108 (there's a "Better Together" link on the product page). If you buy both, you can use the $10 rebate on both to save $20, then go on to qualify for a $20 gift certificate on future Amazon shopping.

So basically you're getting a really nice, tinker-ready Wi-Fi router for $68 with free shipping. Not a bad deal at all, but if you still aren't seeing why this is a good deal, you probably wouldn't want one in the first place.

Read - WRT54G Product Page [Amazon via Slickdeals]
Look - Rebate Image (Use this twice) [Amazon]
Read - $20 Gift Certificate Info [Amazon]

Related
Linksys WRT54G Wireless-G Broadband Router Easily Exploited [Gizmodo]

Re: [ RSTACK Public Security Advisory ] Remote DOS against Linksys PSUS4