Jump to content


Photo

EXPLOIT KIT USING CSRF TO REDIRECT SOHO ROUTER DNS SETTINGS


  • Please log in to reply
2 replies to this topic

#1 TheSentinel

TheSentinel

    The man in the dark

  • General Admin
  • 31,817 posts

Posted 27 May 2015 - 04:51 PM

EXPLOIT KIT USING CSRF TO REDIRECT SOHO ROUTER DNS SETTINGS
 
by Michael Mimoso   May 26, 2015 , 11:05 am
 
Attacks targeting small office and home router DNS settings, long a target for network intruders seeking to redirect web traffic to malicious sites, have for the first time been included in an exploit kit—one that specializes in cross-site request forgery attacks.
 
See more including a list of affected routers at:    https://threatpost.c...settings/112993
 
 
F-Secure Route checker progam

 

 

 



#2 Chachazz

Chachazz

    Is GSF inventory

  • General Admin
  • 36,503 posts

Posted 28 May 2015 - 04:48 AM

More: Large-scale attack uses browsers to hijack routers
Researchers found a Web attack tool designed specifically to exploit vulnerabilities in routers and hijack their DNS settings.
http://www.computerw...rity_2015-05-26

#3 Chachazz

Chachazz

    Is GSF inventory

  • General Admin
  • 36,503 posts

Posted 28 May 2015 - 04:52 AM

Check if your router is affected: Vulnerability Note VU#177092
KCodes NetUSB kernel driver is vulnerable to buffer overflow
http://www.kb.cert.org/vuls/id/177092