Broadcom chip software flaw affecting ASUS routers enables DoS

A Broadcom chipset software flaw affecting certain ASUS routers could enable an unauthenticated attacker within range of a 5 GHz Wi-Fi network to cause an immediate disconnection requiring a manual router reset, Black Duck disclosed Tuesday.The denial-of-service (DoS) vulnerability was discovered by Black Duck researchers while conducting fuzz testing against the ASUS RT-BE86U wireless router. The issue was traced back to the Broadcom chip software used by the router, with Broadcom releasing a fix and ASUS pushing a firmware update to resolve it.“This attack is both easy to execute and highly disruptive, underscoring that even mature and widely deployed network technologies can still yield new and serious attack vectors,” Qualys Vice President of Engineering Saumitra Das said in an email to SC Media.The attack only requires a single malformed frame sent over the air to cause an immediate loss of connection for all clients on the network, bypassing WPA2 and WPA3 protection,…