ASUS wireless routers from the RT-series are vulnerable to a man-in-the-middle attack.
According to a blog post by David Longenecker, they download updates via HTTP without an encryption protocol in clear-text.
The ASUS RT router series update flow contains two simple steps. The first downloads a clear-text file list with the latest firmware builds. Then it parses the downloaded file to check for a newer available firmware update. If a new firmware update is available, it passes to step two, when the router downloads the firmware package. Longenecker said that the issue is that an attacker can tamper with both the list and firmware, being able to target its attack on one victim and then hijack sessions or intercept traffic that passes through the router.
VIEW FULL STORY
