Overview
The ASUS WL-330NUL Pocket Wifi router and possibly other products contain a static DNS entry to the device's configuration pages.
Description
The ASUS WL-330NUL Pocket Wifi router and possibly other products contain static DNS entries to the device's configuration pages. The documentation advises users to configure the device via the provided URL of www.asusnetwork .net. The device has a statically configured DNS entry for this site that directs the browser to the IP address of 192.168.1.1. If a user is not connected to an ASUS device, accessing this website in lieu of entering their router's IP address may lead the victim to a malicious site that may contain malware. At the time of publication, asusnetwork .net redirects to a site serving malware. |
Impact
The user may be redirected to an untrusted page that contains malware which can potentially compromise their machine. |
Solution
Apply an Update Asus has provided a fix for this issue. Users are advised to go to the Asus Support Page and download updated firmware for their device. |
Use the static IP of your router |
Vendor Information
CVSS Metrics
| Group | Score | Vector |
|---|---|---|
| Base | 5 | AV:N/AC:L/Au:N/C:N/I:P/A:N |
| Temporal | 3.7 | E:U/RL:OF/RC:C |
| Environmental | 0.9 | CDP:ND/TD:L/CR:ND/IR:ND/AR:ND |
References
Acknowledgements
Thanks to the reporter who wishes to remain anonymous.
This document was written by Adam Rauf.
Other Information
| CVE IDs: | None |
| Date Public: | 2013-11-25 |
| Date First Published: | 2014-01-13 |
| Date Last Updated: | 2016-05-11 19:48 UTC |
| Document Revision: | 37 |