OpenWRT Package Checksums Not Checked Opening MITM Opportunities And Further Downstream Havok

Alternative router firmware distribution OpenWRT is seeing a vulnerability allowing its package manager to be MITM'd publicized (archived). OpenWRT's fork of opkg, used as a package manager and running as root, fails to check checksums when parsing package lists. Successful use of the MITM to place a payload opens the rest of the doors to ownership. Routing remains a live battleground.

2 thoughts on “OpenWRT Package Checksums Not Checked Opening MITM Opportunities And Further Downstream Havok

  1. I must argue that a package manager has little business of being in a live embedded system anyways. The question remains if the behavior of the image builder is the same which it might if the same package manager is used to build the image.

Leave a Reply to Bingo Boingo Cancel reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>