The attacker must have either a valid credential or an active session token. The vulnerability is due to lack of input validation of the HTTP payload. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web-based management interface of the targeted device. A successful exploit could allow the attacker to execute commands with root privileges. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
|Published (Last):||7 June 2013|
|PDF File Size:||15.29 Mb|
|ePub File Size:||1.57 Mb|
|Price:||Free* [*Free Regsitration Required]|
Four years later, the Linksys branding is gone and the device is now the Cisco RV and in its third hardware revision. Physically, the RV is pretty much the same. It is still 5. The front of the device has the indicator lights. Both the rear and front are shown below. There is no cooling fan, so it runs quiet. It has rubber feet for placing on a desk, as well as holes on the bottom for wall mounting. There are 10 main menus on the left side of the screen, each with sub-menus.
Figure 3 provides a glimpse of the new Admin GUI. I had no trouble with IE8 and Safari connecting to the RV, but the configuration pages were not completely displayed using Firefox on Windows. Cisco told me this is a known issue and they have resolved it in the next firmware release. I was able to use Firefox with the RV on a Linux machine without issue.
My review described support for multiple LAN subnets, which remains a feature in the v3. This feature allows you to use different subnets on your LAN, a useful and simple way to segment a small network.
Static routes can also be added to direct traffic to specific next hop IP addresses. IPv6 is a new networking feature in the RV, which deserves its own section. Enabling stateless auto-configuration for IPv6 addressing tells the RV to advertise its IPv6 subnet in response to an IPv6 router solicitation multicast message. With stateless auto-configuration enabled on the RV, my PC gave itself an address of fcf2dd:f1ff:fe2b, which is correct per the eui standard and my MAC address of f0:dd:fb A 6to4 enable router has to add its own IPv4 address in the address it advertises.
VPN Router Cisco RV082-EU
Cisco Default Password List
Cisco RV082 Dual WAN VPN Router