Huge Vulnerability on Realtek’s RTL819x SoC, Which Probably Includes You
SIP-ping On An Insecure Pipe
Four researchers from Faraday Security in Argentina revealed a flaw in Realtek’s RTL819x SoC at DEFCON which is found in everything from routers and access points to signal repeaters. The list of vendors that use the RTL819x is long, with more than 60 companies including ASUSTek, Belkin, D-Link, TRENDnet, and Zyxel. The good news is that a patch was released by Realtek back in March for their rtl819x-eCos-v0.x series and rtl819x-eCos-v1.x and any product manufactured after March 2022 is already secured from this flaw.
The bad news is pretty dismal for history has shown that IoT vendors do not always bother to release patches for vulnerabilities so there is a good chance that the affected devices are still vulnerable. The 9.8 out of 10 vulnerability is a doozy unfortunately. This particular vulnerability requires no input from the user of the device, it can be triggered remotely without their knowledge. Even better, this exploit works even if you disabled remote management on the device!
Once in, an attacker can crash the device, execute arbitrary code, establish backdoors as well as being able to reroute and intercept any network traffic that passes through the device. Bleeping Computer linked to a Snort rule created by one of the researchers who discovered the flaw in their article, which you can use to see if you are infected.
CVE-2022-27255 is a stack-based buffer overflow with a severity score of 9.8 out of 10 that enables remote attackers to execute code without authentication by using specially crafted SIP packets with malicious SDP data.
More Tech News From Around The Web
- Update Chrome now to patch actively exploited zero-day @ Ars Technica
- Fact check: Tony the Tiger’s milk-cooled PC would work, somewhat @ Rock, Paper, SHOTGUN
- DID YOU SEE A JOHN DEERE TRACTOR CRACKED AT DEF CON? @ Hackaday
- Windows 11’s Widgets Can Now Trigger Notifications on Your Taskbar @ Slashdot
- US bans export of tech used in 3nm chip production on security grounds @ The Register
- ROLLBACK BREAKS INTO YOUR CAR @ Hackaday
- This tiny Intel Xeon-toting PC board can take your Raspberry Pi any day @ The Register
- iOS VPNs Have Leaked Traffic For More Than 2 Years, Researcher Claims @ Slashdot
- Apple reportedly plans iPhone and Apple Watch event for September 7th @ Ars Technica
- Vault images emerge from the set of Amazon’s Fallout TV show @ Rock, Paper, SHOTGUN
- Secretlab TITAN EVO 2022 The Witcher Edition Gaming Chair @ Tweaktown
- AVerMedia Live Gamer Extreme 3 4K Capture Card @ Tweaktown
- Dreame Bot L10 Pro Robot Vacuum And Mop Review @ NikKTech
- GIVEAWAY: Sabrent Rocket DDR5 16GB DC kit & Rocket 4 Plus G 2TB SSD @ Tweaktown
onee-sama is sad about this
jeremy, you know kuroko?
and OMG, your profile pic