D
DelJo63
ZDnet.com is reporting massive negligence in vender maintenance
see the link above for details
- 46 routers hadn't got a single security update within the past year
- even if a consumer installs the latest firmware from a vendor, the router would still be vulnerable.
- ASUS and Netgear do a better job on some aspects of securing routers than D-Link, Linksys, TP-Link and Zyxel
- About 90% of the routers in the study used a Linux operating system
- Most of the devices are powered by Linux and security patches for Linux kernel and other open-source software are released several times a year. This means the vendors could distribute security patches to their devices far more often, but they do not.
- "The worst case regarding high-severity CVEs is the Linksys WRT54GL powered by the oldest kernel found in our study," the report notes. "There are 579 high-severity CVEs affecting this product."
see the link above for details