Tengda router exposure 0DAY Vulnerability Rising routing security guard detection

September 15, just on the line of rising vulnerability platform (address http://loudong.rising.com.cn) exposed Tengda router 4g301 model There is a storage XSS cross-site Scripting Vulnerability (vulnerability number rsv-2014-001). Rising security experts, the loophole is currently no official patch, belonging to the 0 day loophole. Using this vulnerability, an attacker could construct a malicious web-horse link to attack a user's mobile device, and the attacker would face exposure to privacy information, phishing windows, various network accounts and mobile devices infecting the virus. Rising said that the details of the vulnerability has now been notified Tengda, Tengda said will be resolved as soon as possible. At present, rising routing security defender can provide the relevant solutions and preventive measures, the vast number of users simply download the installation, you can obtain vulnerability protection scheme (free download address http://pc.rising.com.cn/lyws/).

Rising routing security guard detected a breach of the Tengda 4g301 router

Rising security experts, the vulnerability appears in the Router Management Settings page, hackers need to carefully construct a section of the attack code, you can make the router URL filtering, client filtering and other functions, then hackers can invade the entire network, random rub the net, steal privacy information, push the fraud site, It is difficult for users to detect all kinds of Internet accounts or to implant viruses into mobile devices. In addition, the vulnerability attack code can be saved in the Router Management page, in which case the user can only recover the factory settings by resetting the router to get rid of the malicious code. Because the Tengda router has a large number of users, once the vulnerability is exploited by hackers, it will seriously threaten the privacy of enterprises and netizens.

At present, Tengda has not yet released updated patches for this vulnerability, so rising company's emergency free routing security software-rising routing security guards increased the vulnerability of the security protection recommendations and defense programs. More vulnerability information please pay attention to rising vulnerability platform Beta, Web site http://loudong.rising.com.cn.