[ale] Recommended (or not) routers

Lightner, Jeffrey JLightner at dsservices.com
Fri Jan 6 08:47:32 EST 2017


That article is from 2015.   One might want to check to see if a fix has been issued for whatever specific router they own since then.


-----Original Message-----
From: ale-bounces at ale.org [mailto:ale-bounces at ale.org] On Behalf Of DJ-Pfulio
Sent: Thursday, January 05, 2017 7:00 PM
To: ale at ale.org
Subject: Re: [ale] Recommended (or not) routers

Is this an issue for that router?

http://www.securityweek.com/millions-routers-vulnerable-attacks-due-netusb-bug


CVE-2015-3036

"The flaw, caused by insufficient input validation, can be triggered by specifying a computer name that is longer than 64 characters when the client connects to the server."

"Furthermore, a component of the driver makes references to a total of
26 vendors that have likely licensed the NetUSB technology. The list includes Allnet, Ambir Technology, AMIT, Asante, Atlantis, Corega, Digitus, EDIMAX, Encore Electronics, Engenius, Etop, Hardlink, Hawking, IOGEAR, LevelOne, Longshine, PCI, PROLiNK, Sitecom, Taifa, and Western Digital."




More information about the Ale mailing list