Description

Researchers from Check Point's Malware and Vulnerability Research Group recently uncovered a critical vulnerability present on millions of residential gateway (SOHO router) devices from different models and makers. This severe vulnerability allows an attacker to remotely take over the device with administrative privileges.

Remediation

Watch for firmware updates from your device vendor addressing Misfortune Cookie, apply the update as it is released.

References

Misfortune Cookie

Related Vulnerabilities

WordPress Plugin HandL UTM Grabber Security Bypass (2.6.4)

WordPress Plugin Wordable Security Bypass (3.1.1)

WordPress Plugin MStore API-Create Native Android & iOS Apps On The Cloud Security Bypass (4.10.7)

WordPress Plugin Like Button Rating-LikeBtn Security Bypass (2.5.3)

WordPress Plugin Login No Captcha reCAPTCHA Security Bypass (1.6.11)

Severity

High

Classification

CVE-2014-9222 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N

Tags

Buffer Overflow Authentication Bypass