Please register to participate in our discussions with 2 million other members - it's free and quick! Some forums can only be seen by registered members. After you create your account, you'll be able to customize options and access all our 15,000 new posts/day with fewer ads.
As I said in my previous post "That more applies if you're feeding the firmware file from a computer. With the method I mentioned the router is doing the downloading, doing it using wireless through the router interface is fine."
If you use the router interface you don't need to manually download the update to your computer, the router downloads it directly, thus there is no need for a wired connection. If you have your heart set on doing it the way you mentioned (the hard way), a hardwire is a good idea.
The vulnerability allows execution of Linux commands by simply appending the command to a URL. The commands execute with root privileges (god mode for not tech people). This can be used to pop a telnet session, FTP, command your router to attack other computers, or pretty much anything else the malicious user wants to do.
And this isn't the first time routers have been targeted, and it won't be the last. There was a piece of malware called DNSChanger that was widespread on Windows computers back in 2012. It has been retooled to now target routers.
Sit tight Dave. I'm gonna snail mail you my response.
LOL. 3 key things one can do to mitigate their risk, make sure remote management is turned off, keep the firmware up to date, and for the love of all that is holy change the password for the management interface, that's the most important one but few people do it because they aren't aware it even exists or don't give it a second thought.
I have remote management enabled, but it's set up so it can only be accessed from the IP address of my work computer.
Not that I'm aware, some routers might have it, but I wouldn't use it. As with Windows, android, and anything else that gets regular updates I don't install them immediately. I wait at least 2-4 weeks and let other people be beta testers.
Please register to post and access all features of our very popular forum. It is free and quick. Over $68,000 in prizes has already been given out to active posters on our forum. Additional giveaways are planned.
Detailed information about all U.S. cities, counties, and zip codes on our site: City-data.com.