P1070425 P1070425

Belkin Wi-Fi Router N600 at risk of multiple zero-day vulnerabilities

Belkin Routers has been identified to have multiple vulnerabilities, dangerously exposing users to potential attacks. The vulnerable router is N600 DB Wireless Dual-Band N+, specifically model model F9K1102 v2. The security weaknesses in the router have been exposed by the US-Computer Emergency Response Team (CERT), which also says it currently doesn’t have an ideal about a practical solution to the problems.

Analysts at US-CERT sound the alarm over the existence of serious security lapses in a certain Belkin router.

According to CERT’s Joel Land, there are at least five specific security flaws in the Belkin N600 DB Wireless Dual-Band N+ Router (F9K1102 v2 Model). The existence of these security weaknesses makes the router extremely exploitable, and users are warned to be careful.

Hacker Access Points

Among other things, CERT says that a remote hacker can exploit the vulnerabilities by spoofing DNS (Domain Name System) responses. In that case, the attacker can cause the vulnerable devices to contact a tainted host.

Alternatively, the remote hacker can lure an authentic user into making a request that is not intended though the Web server. In such cases, the hacker can take control of the vulnerable devices that connect to the router.

Moreover, the security lapses in the Belkin router also expose devices to potential attacks by an LAN-based hacker. Such an attack can get smartly over authentications are taken control of the device connected devices.

Temporary Remediation

Although lapses in the Belkin N600 DB Wireless Dual-Band N+ Router have been identified, there is no practical solution to the weaknesses in sight, at least currently. Nevertheless, there are temporary workarounds that users can try to employ to mitigate the threats.

According to CERT, users should ensure that they use strong passwords for their Wi-Fi. The same should be used for the web management portal without knowing the password. As another measure, users of the specific Belkin router model should only allow trusted hosts to connect to their LAN.

A Strong password can help to prevent blind guessing attempts that would establish sessions for Cross Site Request Forgery (CSRF) attacks.

Security analysts have in the recent times cited multiple weaknesses in Wi-Fi routers, and Belkin now falls into the category of vulnerable routers.