Fortinet Discovers Asus Routers Remote Code Execution Vulnerability
Fortinet's FortiGuard Labs has discovered a remote code execution vulnerability in some routers shipped by the company Asus.
Asus manufactures a series of network routers directly competing with Linksys routers from Belkin.
A malicious user can forge a HTTP request to inject operating system commands that can be executed on the device with higher privileges.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released Dec 27, 2017
Users should apply the solution provided by Asus.
This vulnerability was discovered by David Maciejak of Fortinet's FortiGuard Labs.