DooKey
[H]F Junkie
- Joined
- Apr 25, 2001
- Messages
- 13,663
Security researcher, Ricky Lawshae, has discovered a nasty vulnerability in the Linksys wireless video bridge provided with DirecTv's Genie server. This vulnerability allows a user to gain root access on the device and then install malware or backdoors without detection. You would think something like this would be patched immediately, but AT&T was notified of this over 6 months ago and still hasn't addressed this with any kind of patch. Not too cool AT&T/Linksys.
"However, after a while we heard nothing back so decided to go public. We want disclosure to drive action and the flaw can easily be exploited for a botnet covering a not-insignificant number of devices – it has the potential to be very nasty."
"However, after a while we heard nothing back so decided to go public. We want disclosure to drive action and the flaw can easily be exploited for a botnet covering a not-insignificant number of devices – it has the potential to be very nasty."