JVN#55714408: Multiple Yamaha routers vulnerable to denial-of-service (DoS)

Multiple routers provided by Yamaha contain a denial-of-service (DoS) vulnerability due to an issue in processing IP packets.

Impact

A remote attacker may cause a denial-of-service (DoS).

Solution

Update the firmware
Update to the latest version of firmware according to the information provided by the developer.
According to the developer, firmware addressing this vulnerability will be released successively.

Apply a workaround
If updated firmware cannot be obtained, the following workaround may mitigate the affects of this vulnerability.

• Utilize packet filtering to prevent accepting malicious IP packets

According to the developer, firmware updates for certain models will not be released.

Products Affected

A wide range of products are affected. For more information, refer to the developer’s website.