lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
Open Source and information security mailing list archives
| ||
|
Message-ID: <BANLkTi=-Bo5wToUs8L431Rz_n1htVaYFQg@mail.gmail.com> Date: Fri, 29 Apr 2011 18:02:19 +0000 From: Nick Boyce <nick.boyce@...il.com> To: full-disclosure@...ts.grok.org.uk Subject: Re: Cisco Linksys WRT54G XSS Vulnerability On Thu, Apr 28, 2011 at 5:12 PM, Justin Klein Keane <justin@...irish.net> wrote: > Systems affected: > - ----------------- > Cisco Linksys Wireless G Boradband Router WRT54G with firmware version > 4.21.1 was tested and found to be vulnerable. FWIW, exact same weakness confirmed in Linksys AG241v1 with firmware 1.00.23 (the AG241 is the same animal as the WRT54G but without the WiFi). I don't suppose Cisco will ever release updates to address vulnerabilities in these products, simple (and cost-effective for customer goodwill) though it would be. Cheers Nick -- Handy Fact: Miles per Gallon and Furlongs per Pint are equivalent. _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists