isc.sans.org— Several severe flaws have been recently discovered with Linksys WRT54G wireless routers. If you have one, patch it up now.
Sep 15, 2005View in Crawl 4
The web management through the WLAN is disabled by default on most of these units. Even so, it's nice to be reminded to update the firmware. You know that most of these home routers won't be upgraded. Most don't even have any security or a unique SSID set to begin with.
And in a relatd topic - UPGRADE the firmware in the WET54GS5 if you have it, or you will get authentication and DHCP problems up the wazoo. The latest patch for the bridge addresses some WPA shared-key re-authentication issues.
arkaicSep 15, 2005Submitter
Well, crud. Try these.<a class="user" href="http://www.idefense.com/application/poi/display?type=vulnerabilities">http://www.idefense.com/application/poi/display?type=vulnerabilities</a><a class="user" href="http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities&flashstatus=false">http://www.idefense.com/application/poi/display?id=304&type=vulnerabilities&flashstatus=false</a><a class="user" href="http://www.idefense.com/application/poi/display?id=305&type=vulnerabilities&flashstatus=false">http://www.idefense.com/application/poi/display?id=305&type=vulnerabilities&flashstatus=false</a><a class="user" href="http://www.idefense.com/application/poi/display?id=306&type=vulnerabilities&flashstatus=false">http://www.idefense.com/application/poi/display?id=306&type=vulnerabilities&flashstatus=false</a><a class="user" href="http://www.idefense.com/application/poi/display?id=307&type=vulnerabilities&flashstatus=false">http://www.idefense.com/application/poi/display?id=307&type=vulnerabilities&flashstatus=false</a><a class="user" href="http://www.idefense.com/application/poi/display?id=308&type=vulnerabilities&flashstatus=false">http://www.idefense.com/application/poi/display?id=308&type=vulnerabilities&flashstatus=false</a>
mesoedSep 16, 2005
The web management through the WLAN is disabled by default on most of these units. Even so, it's nice to be reminded to update the firmware. You know that most of these home routers won't be upgraded. Most don't even have any security or a unique SSID set to begin with.
ffcmerinoSep 16, 2005
And in a relatd topic - UPGRADE the firmware in the WET54GS5 if you have it, or you will get authentication and DHCP problems up the wazoo. The latest patch for the bridge addresses some WPA shared-key re-authentication issues.
sludgeSep 16, 2005
I like www.linksysinfo.org for my linksys firmware updates.
stfarmSep 16, 2005
Thanks to Arkaic for letting us know. Appreciate it!Steve<a class="user" href="http://www.GeekTavern.com">http://www.GeekTavern.com</a>
peatSep 16, 2005
From the firmware release notes:Firmware 4.20.7...- Resolved issue with iDefense security vulnerability...