Bruno Bierbaumer

**Name of the Vulnerable Software and Affected Versions** ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers versions prior to 3.0.0.4.380.7378 ASUS RT-AC68W routers versions prior to 3.0.0.4.380.7266 ASUS RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers versions prior to 3.0.0.4.380.9488 **Description** A cross-site scripting (XSS) issue exists in the httpd service of various ASUS routers, allowing remote attackers to inject arbitrary JavaScript code by requesting filenames longer than 50 characters. **Recommendations** For ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers, update the firmware to version 3.0.0.4.380.7378 or later. For ASUS RT-AC68W routers, update the firmware to version 3.0.0.4.380.7266 or later. For ASUS RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers, update the firmware to version 3.0.0.4.380.9488 or later.

**Name of the Vulnerable Software and Affected Versions** ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers versions prior to 3.0.0.4.380.7378 RT-AC68W routers versions prior to 3.0.0.4.380.7266 RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers versions prior to 3.0.0.4.380.9488 Asuswrt-Merlin firmware versions prior to 380.65 2 **Description** A session hijack issue in httpd on various ASUS routers allows remote attackers to steal any active admin session by sending specific HTTP headers, including `cgi logout` and `asusrouter-Windows-IFTTT-1.0`. **Recommendations** For ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers, update the firmware to version 3.0.0.4.380.7378 or later. For RT-AC68W routers, update the firmware to version 3.0.0.4.380.7266 or later. For RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers, update the firmware to version 3.0.0.4.380.9488 or later. For Asuswrt-Merlin firmware, update to version 380.65 2 or later. As a temporary workaround, consider restricting access to the `cgi logout` and `asusrouter-Windows-IFTTT-1.0` HTTP headers until a patch is available.

**Name of the Vulnerable Software and Affected Versions** ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers with firmware before 3.0.0.4.380.7378 RT-AC68W routers with firmware before 3.0.0.4.380.7266 RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers with firmware before 3.0.0.4.380.9488 Asuswrt-Merlin firmware before 380.65 2 **Description** The issue is caused by buffer overflows in the networkmap component of ASUS router firmware, allowing remote attackers to execute arbitrary code on the router via crafted multicast messages with long host or port values. This can be achieved by forming large strings as values for the host name and port in response to multicast messages. **Recommendations** For ASUS RT-N56U, RT-N66U, RT-AC66U, RT-N66R, RT-AC66R, RT-AC68U, RT-AC68R, RT-N66W, RT-AC66W, RT-AC87R, RT-AC87U, RT-AC51U, RT-AC68P, RT-N11P, RT-N12+, RT-N12E B1, RT-AC3200, RT-AC53U, RT-AC1750, RT-AC1900P, RT-N300, and RT-AC750 routers with firmware before 3.0.0.4.380.7378, update the firmware to version 3.0.0.4.380.7378 or later. For RT-AC68W routers with firmware before 3.0.0.4.380.7266, update the firmware to version 3.0.0.4.380.7266 or later. For RT-N600, RT-N12+ B1, RT-N11P B1, RT-N12VP B1, RT-N12E C1, RT-N300 B1, and RT-N12+ Pro routers with firmware before 3.0.0.4.380.9488, update the firmware to version 3.0.0.4.380.9488 or later. For Asuswrt-Merlin firmware before 380.65 2, update the firmware to version 380.65 2 or later.

Name of the Vulnerable Software and Affected Versions: GPG Suite versions prior to 2015.06 Description: The issue concerns the installPackage function in the installerHelper subcomponent of Libmacgpg, which allows local users to execute arbitrary commands with root privileges. This is achieved by using shell metacharacters in the `xmlPath` argument. Recommendations: For versions prior to 2015.06, update to version 2015.06 or later to resolve the issue. As a temporary workaround, consider restricting access to the installPackage function in the installerHelper subcomponent to minimize the risk of exploitation. Avoid using shell metacharacters in the `xmlPath` argument until the issue is resolved.