Wireless routers made by Belkin have been found to have several vulnerabilities, some of which have no workarounds. According to an advisory by US-CERT, The Belkin N600 DB Wireless Dual Band N+ router model F9K1102 v2 with firmware version 2.10.17 has flaws that could allow a hacker to arbitrarily inject files, perform man-in-the-middle attacks and forge cross-site requests. “A remote, unauthenticated attacker may be able to spoof DNS responses to cause vulnerable devices to contact attacker-controlled hosts or induce an authenticated user into making an unintentional request to the web server that will be treated as an authentic request,” said the US-CERT advisory. “A LAN-based attacker can bypass authentication to take complete control of vulnerable devices.”
View full story