San Antonio December 8, 2020 -- Digital Defense, Inc., a provider in vulnerability management and threat assessment solutions, announced that its Vulnerability Research Team (VRT) uncovered a previously undisclosed vulnerability affecting D-Link VPN routers. D-Link DSR-150, DSR-250, DSR-500 and DSR-1000AC VPN routers running firmware version 3.14 and 3.17 are vulnerable to a remotely exploitable root command injection flaw.
These devices are commonly available on consumer websites/ecommerce sites such as Amazon, Best Buy, Office Depot and Walmart. Given the rise in work-from-home due to the pandemic, more employees may be connecting to corporate networks using one of the affected devices.
The vulnerable component of these devices is accessible without authentication. From both WAN and LAN interfaces, this vulnerability could be exploited over the Internet. Consequently, a remote, unauthenticated attacker with access to the router’s web interface could execute arbitrary commands as root, effectively gaining complete control of the router. With this access, an attacker could intercept and/or modify traffic, cause denial of service conditions and launch further attacks on other assets. D-Link routers can connect up to 15 other devices simultaneously.
"Our standard practice is to work in tandem with organizations on a coordinated disclosure effort to facilitate a prompt resolution to a vulnerability. The Digital Defense VRT reached out to D-Link who worked diligently on a patch. We will continue outreach to customers ensuring they are aware and able to take action to mitigate any potential risk introduced by the vulnerability," states Mike Cotton, senior vice president of engineering at Digital Defense.
About MRB PR:
MRB PR is a public relations company.
Published: Wednesday, December 9, 2020
Platform Data Transformation
OpsTel is proud to provide our clients with a software automation service that is used to aid in the transition from one platform to another utilizing both speed and accuracy. Whether it is going from premises to premises, premises to cloud, premises to private cloud or even a hybrid deployment; OpsTel has the ability to help cut your transition time so you can focus your efforts on remaining architecture priorities.
We’ve observed conversions as high as 85% - in as little time as 30-minutes - with remaining client specific complex integrations being done by employees or professional services of your choice leveraging our Platform Data Transformation™ solution.
|2.)||Tru29 Outsource Solutions Inc.|
Back Office Solutions
Although the customer-facing type of tasks is essential to good customer experience, tasks being done in the background is as important.
Tru29 has been providing this type of outsourcing solutions to various businesses across the globe so you can be assured of a reliable and experienced workforce.