“Misfortune Cookie” Broadband Router Vulnerability

Original release date: December 20, 2014

Broadband routers employing the Allegro RomPager firmware prior to versions 4.34 contain a vulnerability in HTTP cookie processing code. Exploitation of this vulnerability could allow a remote attacker to take control of an affected device.

Users and administrators are encouraged to review Vulnerability Note VU#561444, the Allegro Press Release, and Check Point's Security Advisory for additional information and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.