Ubiquiti Security Vulnerability |
News from Freenet Antennas |
|
AirOS Security Exploit
Updated Firmware
|
Ubiquiti has announced:
... we have discovered a vulnerability which may grant remote users administrative access to Ubiquiti equipment running AirOS v3/4 and AirOS v5 without requiring authentication.
We have quickly fixed this issue and released an updated firmware with this vulnerability patched.
Note: The vulnerability is serious for Ubiquiti devices directly connected to the Internet; hackers can gain access via the WAN port. It is less serious for devices protected from the Internet by a firewall.
For more information please see http://ubnt.com/forum/showthread.php?t=45169.
Rob Clark
Recommended Firmware
Each month we will update this table.
Device |
Recommended Firmware |
Comments |
UltraWAP-G V2 |
V1.31 |
|
UltraWAP-N |
Factory FW |
|
Ubiquiti a/b/g |
V4.0.1 |
|
Ubiquiti "M" |
V5.3.5
|
|
RouterStation(Pro) |
OpenWRT Backfire 10.03 |
Supports MIMO (SR71-12/15 radio cards) |
|