bamed.org

A practically emberassing bug in dd-wrt was released today.  It would allow anyone to get root access to your router if you have remote Web GUI turned on, which is always a bad idea.  If you don’t, anyone on your internal network could get root access pretty easily.  Details on the bug are on milw0rm at http://www.milw0rm.com/exploits/9209.  The people who make dd-wrt released a patch to fix the issue, so if you’re vulnerable, I suggest you fix it ASAP.

http://www.securityfocus.com/bid/32703/discuss

This entry was posted on Tuesday, September 8th, 2009 at 12:35 am and is filed under Just Plain Geeky, Security. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.