Vulnerability sees routers installed with RomPager open to hackers

Yet another vulnerability has been found - this one enables hackers to gain easy access into your home router and control your network.

@smithymayo
Published Fri, Dec 19 2014 1:03 AM CST   |   Updated Tue, Nov 3 2020 12:11 PM CST

It almost seems like vulnerabilities in hardware and software is all that's hitting the news in the past few days. We've reported on multiple issues ranging from the "Grinch" Linux flaw to the vulnerability in SS7's mobile network towers rendering our text messages and phone calls open for all prying eyes.

Vulnerability sees routers installed with RomPager open to hackers | TweakTown.com

In recent news, a vulnerability in router software has opened up millions of devices to hacking. This is apparently achieved by the hacker "sending a specially crafted request to RomPager, an embedded Web server running on them" as according to PC World.

Once access has been gained, the hacker then has full control over any in-home security, systems or devices connected to the network - meaning they can steal your data, alter your information or utilize your technology to launch attacks against other systems. It gives them the ability to strip SSL from secure connections and also hijack your DNS settings, listing dodgy websites as 'safe' for your personal computers - opening you up to more malicious attacks.

This information was discovered by Check Point Software Technologies (CPST), being described as an issue located within RomPager. RomPager is used by many routers to host Web-based administration interfaces and listed as one of the most commonly seen globally.

In their report, CPST claims that "attackers can send specially crafted HTTP cookies that exploit the vulnerability to corrupt memory and alter the application and system state. This, in effect, can trick the attacked device to treat the current session with administrative privileges -- to the misfortune of the device owner."

NEWS SOURCE:

I'm a competitive gamer and was an eSports employee. Recent changes have seen me hang up the mouse and move over to the technology world, covering all news for TweakTown, ranging from gaming news to opinion articles and the latest tech releases. Expect to see a few different articles on international eSports news and competitive game releases, as well as audio and mobile device content.

Newsletter Subscription

Related Tags

Newsletter Subscription
Latest News
View More News
Latest Reviews
View More Reviews
Latest Articles
View More Articles