Exploit allows Asus routers to be hacked from local network
A vulnerability in Asuswrt, the firmware running on many wireless router models from Asustek Computer, allows attackers to completely compromise the affected devices. Malicious hackers, however, need to launch their attacks from within the local networks served by the vulnerable routers.
The flaw is located in a service called infosvr, which runs on Asuswrt-powered routers by default. The service, which is used by a tool called the Asus Wireless Router Device Discovery Utility, listens to packets sent to the router’s LAN (local area network) interface over UDP broadcast port 9999.
“This service runs with root privileges and contains an unauthenticated command execution vulnerability,” security researcher Joshua Drake, who found the vulnerability, said on his GitHub account.