---

Dangerous remote Linksys 0-day root exploit discovered

DefenseCode researchers have uncovered a remote root access vulnerability in the default installation of Linksys routers. They contacted Cisco and shared a detailed vulnerability description along with the PoC exploit for the vulnerability. Cisco claimed that the vulnerability was already fixed in the latest firmware release, which turned out the be incorrect. The latest Linksys firmware (4.30.14) and all previous versions are still vulnerable.