Cisco has warned that the software used in all of its routers contained a major security vulnerability which could give complete control of the device over to malicious intruders.
The flaw is present in all versions of the Internet Operating System (IOS) software used in Cisco routers, switches and firewalls using local authentication databases with the HTTP server enabled.
A Cert advisory on the flaw warns: "A remote attacker can execute arbitrary commands at the highest privilege level (15) on systems using local authentication databases with the HTTP server enabled. This access allows a remote attacker to inspect or change the configuration of the device, effectively allowing complete control."
A quick workaround is to disable the HTTP server on the router or to use Terminal Access Controller Access Control System (TACACS+) or Radius to authenticate users.
But Cisco has responded to the bug and released an updated version of the IOS software.
Cisco is known for not releasing patches for flawed software, but instead re-releasing the entire product so that the latest version contains all current fixes in one installation.
Cotton seedling freezes to death as Chang'e-4 shuts down for the Moon's 14-day lunar night
Fortnite easily out-earns PUBG, Assassin's Creed Odyssey and Red Dead Redemption 2 in 2018
Meteor showers as a service will be visible for about 100 kilometres in all directions
Saturn's rings only formed in the past 100 million years, suggests analysis of Cassini space probe data
New findings contradict conventional belief that Saturn's rings were formed along with the planet about 4.5 billion years ago