Cisco has issued updated firmware for the WAP4410N Wireless-N Access Point, a popular wireless device for small business. The company disclosed earlier this month. An attacker exploiting this vulnerability through the LAN interface can access user credentials for the administrator account of the device and the device configuration or issue arbitrary commands on the device with escalated privileges.
The other affected products are:
- Cisco RVS4000 4-port Gigabit Security Router running firmware version 126.96.36.199 and prior
- Cisco WRVS4400N Wireless-N Gigabit Security Router hardware version 1.0 and 1.1 running firmware version 1.1.13 and prior
Firmware updates for these other products are still forthcoming. Cisco had promised to release fixed software for the affected devices by the end of January 2014. There are no known workarounds for the problem.
Cisco says that "[N]o other Cisco products are currently known to be affected by these vulnerabilities."
The vulnerability was disclosed by Eloi Vanderbeken on his github page, where he also provided exploit code.