RT-N16
BIOS & FIRMWARE
- Driver & Tools
- BIOS & FIRMWARE
Security fixed
- Fixed CVE-2017-5891.
- Fixed CVE-2017-5892.
- Fixed CVE-2017-6547.
- Fixed CVE-2017-6549.
- Fixed CVE-2017-6548.
- Added log message for brute force attack.
Bug fixed
- Fixed UI issue when using Chrome 56.
Please unzip the firmware file first then check the MD5 code.
MD5: 910498d73f8848b01cfbabebf13b6b10
[Beta release]
Security fixes
- Updated OpenSSL library to 1.0.2d
- Fixed User-Agent buffer overflow.
- Fixed null ptr dereference in https issue.
- Fixed buffer overflow issues.
- Modified brute-force protection mechanism in router login page.
- Fixed CVE-2015-6949 buffer overflow issue.
- Fixed Web server Accept-Language buffer overflow.
- Fixed Web server URL handler buffer overflow.
- Fixed CSRF and XSS vulnerability.
- Enhanced router login password and wireless password(WPA2) strength check method to against brute-force attack.
- Reject administrator to set too easy to guess login and wireless password to avoid brute-force attack.
- Fixed CSRF and XSS vulnerability when router is in default status (user does not set the router yet)
- Modified the access rights of account mode and share mode to asusware.platform path when lighttpd server is enabled.
- Modified the access rights to specific port of UPnP server.
- Updated lighttpd server version to 1.4.39
- Restricted access from wan method to enhance security.
- Changed Telnet default access interface.
New Features
- Support ASUS Router App
- Added Bandwidth Limiter in QoS. Let administrator easily limit specific client's upload/ download bandwidth
- Independent mac filter for main wireless network and guest network. Administrator can set white list for main wireless network to only allow trust client connect to main wireless network and share network to guest with guest network
- Modified the network map client status. When chick the client icon, administrator can bind IP, change host name, change icon, block internet access or set time scheduling.
- Added client list view button on network map and help administrator easily monitor all client connection status.
- Add reboot schedule in Administration --> System
- Supported auto dynamic port changing of UPnP server when ports conflict.
Modifications
- Adjusted Guest network mac filter maximum client number to 16
- Show current control channel while value is set to auto.
- Bandwidth limiter can accept decimal point.
- Unnecessary to reboot router after set allow only specified IP address to enter GUI.
- Changed warning page style.
Bug fixes
- Fixed setup wizard IE11 compatibility issue.
- Fixed MAC clone abnormal issue
- Fixed web redirection issue when WAN IP conflicted.
- Fixed compatibility issues for IE8
- Fixed GUI related issues
- Fixed login issue when router’s IP is 10.x.x.x
- Fixed parental control-> time scheduling related issue.
- Fixed IPv6 relay issues.
- Fixed the GUI issue for reboot scheduler
Release note:
- Add DDNS support method and tutorials on web interface when DDNS is not able to use in some areas.
MD5:738e66474f9ebc8b0fe4350ed6b8b08d
-Fixed infosvr security issue.
-Fixed Cross-site request forgery security issue
Network map new features :
1.System status can now show CPU and RAM usage.
2.Client status can show wireless clients signal strength.
3.Client icon is changeable.
4.Client name is changeable and parental control, QoS, manually assigned IP, static route, port forwarding client list can also refer to this name.
Security related :
1. Upgrade OpenSSL library from 1.0.0d to 1.0.0m
Security related issues:
1. Fixed remote command execution vulnerability
2. Fixed cross site scripting vulnerability
3. Fixed parameters buffer overflow vulnerability
4. Fixed XSS(Cross Site Scripting) vulnerability
5. Fixed CSRF(Cross Site Request Forgery) vulnerability
6. Added auto logout function. The timeout time can be configured in - Administration--> System
7. Included patches related to network map. Thanks for Merlin's contribution.
8. Fixed password disclosure in source code when administrator logged in.
9. Changed OpenSSL Library from 1.0.0.b to 1.0.0.d. Both OpenSSL versions are not vulnerable to heartbleed bug.
Others:
1. Fixed IPTV related issues.
2. Modified the 3G/LTE dongle setting process in quick internet setup wizard.
3. Fixed the Cloud sync problem
4. Fixed Parental control check box UI issues.
5. Modified the FTP/ Samba permission setting UI
6. Modified media server setting UI
7.Samba/ media server/ iTunes server name can be changed.
8. Dual wan fail over now support fail back
9. Fixed wake on lan magic packet sending issue.
10. Fixed false alarm for samba and ftp permission.
11. Fixed IPv6 related issues.
Special thanks for David and Palula’s research
CVE-2014-2719 http://dnlongen.blogspot.com/2014/04/CVE-2014-2719-Asus-RT-Password-Disclosure.html
Remote command execution http://seclists.org/fulldisclosure/2014/Apr/58
Reflected XSS: http://seclists.org/fulldisclosure/2014/Apr/59
This version add many new features, please press the reset button more than 5 seconds to reset the RT-N16 after firmware upgraded to prevent unexpected problem.
AiCloud 2.0 released
1.All new aicloud web interface
2. Support video subtitles (.srt format) For better video compatibility, windows user need to update VLC to v2.0.8 or later
3. File/ folder can be shared to Facebook(router must have public IP)
4. Supported mobile version web interface
5. Supported router to router sync
Please refer to video via:
http://www.youtube.com/watch?v=vG6BEjUrzfc&feature=share&list=UUlSsNTCjMEGj8Guo_NmiMWA
6. Fixed smartsync related issues.
Fixed:
1. Fixed throughput issue when VPN server broadcast is enabled.
2. Fixed DNS Amplified DDoS vulnerability.
3. Fixed HK ISP DHCP connection issue.
4. Fixed USB application update related issues.
5. Reduced the redundant packets when used 3G/4G dongle as WAN and opened web browser.
6. Fixed the traffic monitor related issues when used 3G/4G dongle as WAN,
7. Fixed client duplicated issue in network map
8. removed modem setting button in AP mode
9. Fixed IE related parental control issue.
10 Fixed multicast IPTV related issues in PPPoE/PPTP/L2TP connection.
11. Fixed script error 'invalid argument on IE'
12. Fixed smart sync JS error
13. Fixed JST time zone issue.
Added:
1. Unmount all disks with 1-click
2. Disk scan feature. It is in external USB disk status tab in network map.
3. PPTP VPN server status GUI
4. Recognized .rmvb files as video format in media server.
5. Show more detail information in USB application install process.
6. Roaming assistance option in wireless->professional. Administrator can define the disconnection RSSI threshold.
It can help client switch to better signal AP faster in multiple AP environment.
IPv6
1. Fixed PPP IPv6 global address retrieval
2. added DHCP-PD option
3. Added LAN DHCPv6 server
4. Added network status GUI.
5. Added option domain name if available
3G/4G dongles
1. Support Yota LTE dongle LU150
2. Support ZTE LTE dongle MF821
3. Support 3G dongle Q110
4. Support Huawei EC306