Ex-Cisco Linksys says it doesn't Heartbleed

Routers don't implement vulnerable version of OpenSSL, according to new owner Belkin

In the wake of the Heartbleed OpenSSL vulnerability, reports have surfaced that home routers are especially susceptible to the bug. Cisco and Juniper have already confirmed that some of their products are affected, but Linksys - the home router company recently sold to Belkin by Cisco - says it products are fine. The following from Belkin International:

We are aware of the Heartbleed OpenSSL vulnerability, however after thorough testing of our product lines, we can confirm that our routers and WeMo solutions are not impacted.  Linksys routers do use OpenSSL however our product line uses another version that is not impacted by this vulnerability.  Belkin routers are also not impacted.   In regards to our WeMo line of home automation solutions, our firmware does use OpenSSL but like our Linksys routers, they use another version that is not impacted by this vulnerability.  Our WeMo products do work with other vendor software solutions however we have taken precautions by changing the credentials they use via our cloud to avoid any potential risk.

The Heartbleed Bug, a flaw in the open source security program OpenSSL, could allow attackers to eavesdrop on Web, e-mail and some VPN communications. OpenSSL implements basic cryptographic functions and utilities.

The Heartbleed vulnerability can be found in servers, Internet routers, home routers, industrial routers and mobile devices. Heartbleed appears to have existed in OpenSSL for about two years. It was discovered by Google and Codenomicon security researchers and disclosed early this week.

More from Cisco Subnet:

Cisco, VMware take SDN battle to policy arena

Cisco looks at extending OpFlex

Cisco reveals OpenFlow SDN killer

Cisco challenger Arista files to go public

Cisco's cloud services reversal was inevitable

Cisco's big about face on cloud services

SDN changing the shape of networking, IT careers

Cisco execs address defective memory component issues with routers, switches

Cisco revamps enterprise product pricing

Take back the network

Follow all Cisco Subnet bloggers on Twitter.Jim Duffy on Twitter


Join the Network World communities on Facebook and LinkedIn to comment on topics that are top of mind.
Must read: 10 new UI features coming to Windows 10