CastleCops® - Linksys Router External Sniffing?

Need help? Click here to register for free! Absolutely zero advertisements on this site!

**$9736.22 of $21422.68**

Help CastleCops serve the community on new servers, Donate Here to reach our goal.

	Donation/Premium

	Donations. Become Premium Today!

	Security Central

	· Home · PIRT/Fried Phish · MIRT · SIRT · Deutsch · Wiki · Newsletter · O16/ActiveX · CLSID List · Contest2007 · Downloads · Feedback (send) · Forums · HijackThis · Hijacktrend · LSPs · My Downloads · O18 · O20 · O21 · O22 · O23 · O9 · Premium · Private Messages · Proxomitron · Reviews · Search · StartupList · Stories Archive · Submit News · WsIRT · Your Account · Acceptable Use Policy

Survey

Threat Assessment: Linksys Router External Sniffing?

I read a report today from The Inquirer that purports Linksys (now owned by Cisco) hasn't updated their firmware to popular products such as the BEFSR41 for a year now. The article was published today based on an exploit released by Jon Hart that claims via BOOTP can be used to crash or sniff Linksys devices remotely.

I went to Linksys today and indeed found the most recent firmware for the popular BEFSR41 datad April 1, 2004 available for download. Now note that this is firmware 1.05.00 version 3. You can take a look here @ Linksys FTP for all the various firmware versions not just for the BEFSR41.

The question is, does Linksys have an announcement on their site referencing this proof-of-concept exploit? I couldn't readily find one.

Posted on Wednesday, 02 June 2004 @ 10:27:15 UTC by Paul (3581 reads)
[ Trackback ]

"Threat Assessment: Linksys Router External Sniffing?" | Login/Create an Account | 3 comments | Search

The comments are owned by the poster. We aren't responsible for their content.

No Comments Allowed for Anonymous, please register

Re: Linksys Router External Sniffing? (Score: 1)
by andrew_wrobel on Wednesday, 02 June 2004 @ 11:13:20 UTC
(User Info | Send a Message)

Not to get technical, but you are only half correct.

The web page download takes you to the firmware update for the BEFSR41 version 3 router.

But the original BEFSR41 router ( This is the standing model, where as the version 3 is stackable ) hasn't been updated since June of 2003.

If you go to the firmware download page, you'll find that some of the various linksys products have different versions ( I guess that's how the distinguish between the standing and the stackable models )

So it may well mean that the exploit impacts the non-stackable BEFSR41 routers.

Re: Linksys Router External Sniffing? (Score: 1)
by Paul on Wednesday, 02 June 2004 @ 12:02:03 UTC
(User Info | Send a Message) http://www.laudanski.com

Thanks Andrew for the edification.

]

Re: Linksys Router External Sniffing? (Score: 1)
by andrew_wrobel on Tuesday, 08 June 2004 @ 09:13:10 UTC
(User Info | Send a Message)

When I was checking Version Tracker today, I found alot of linksys routers with firmware updates, INCLUDING version 1 of the BEFSR41 router.

I know what I'll be doing when I get home today from work.

	Login

	Nickname Password Security Code: Type Security Code: Usage signifies AUP acceptance · New User? · Click here to create a registered account.

	Related Links

	· del.icio.us! · digg it! · reddit! · TrackBack (0) · HotScripts · W3 Consortium · More about Networks · News by Paul Most read story about Networks: Network Troubleshooting 101 � Part 1

	Article Rating

	Average Score: 0 Votes: 0 Please take a second and vote for this article:

	Options

	Printer Friendly Page


	2002-2008 � Computer Cops LLC dba CastleCops®. All rights reserved. Acceptable Use Policy. Use signifies your agreement. 202ppm 0.133s (0.01s) Making cybercriminals unhappy since 2002*