I have the non-wireless version of this router (BEFSR41)
Does anyone know if affects that too?
It will only affect routers that have the DD-WRT firmware loaded on them. You have to load that firmware yourself, so you would more than likely know if this flaw affected you.
In reality I would wager less of the dd-wrt routers would get patched, but only because a lot of them were deployed by non-professionals who will likely not see the news.
That is a good point, but I would have to disagree. I think that if someone is going to deploy DD-WRT, they would probably be as likely to see an article or two on it. Most of the people I know that use DD-WRT are geeky security types anyway.
what the hell is a DD-WRT? Can someone find a list of actual routers that are affected by this instead of speaking in geek terms?
Dude... This is Slashdot. What did you expect?
Yes, there's a fix for this, but what is the likelihood of every person who owns a Wifi router fixing this flaw?
We talk about the dangers of homogeny, but this is exactly the type of thing that homogeny causes. All the routers with DD-WRT implemented to save costs, but in the end everyone is screwed.
Just because we love Linux doesn't mean that we should sacrifice the entire ecosystem to that love. We need to nurture other implementations to prevent this type of virus from wiping out our entire networking infrastructure.
What is the likelihood of any flaw on any system getting patched? I don't see how a vulnerability in DD-WRT is any different than if Cisco announced a major vulnerability in one of their systems. I bet just about the same percentage would be patched.
FORTRAN is not a flower but a weed -- it is hardy, occasionally blooms, and grows in every computer. -- A.J. Perlis