Belkin Patches WeMo Home Automation Vulnerabilities

Belkin has an intriguing suite of WeMo-branded smart devices for home automation, including light switches, motion detectors, integration with appliances, and more, but security firm IOActive recently discovered multiple vulnerabilities in WeMo--vulnerabilities that Belkin says it has now patched.
 
Belkin’s statement on the subject reads in part:
Belkin has corrected the list of five potential vulnerabilities affecting the WeMo line of home automation solutions that was published in a CERT advisory on February 18. Belkin was in contact with the security researchers prior to the publication of the advisory, and, as of February 18, had already issued fixes for each of the noted potential vulnerabilities via in-app notifications and updates. 
 
The most recent firmware update resolves the issues, which included the ability for a hacker to snag cryptographic keys and passwords, the ability to hack one WeMo device from another, an XML injection vulnerability, and a lack of SSL integrity.

 

Comments (0)

This post does not have any comments. Be the first to leave a comment below.


Post A Comment

You must be logged in before you can post a comment. Login now.

Featured Product

Revolutionary Hi-Fi 2 4x4 (Four Zone, Four Source) Distributed Audio System from Leviton Security & Automation

Revolutionary Hi-Fi 2 4x4 (Four Zone, Four Source) Distributed Audio System from Leviton Security & Automation

Leviton Security & Automation's 4x4 is the perfect affordable solution for homes and small businesses. The powerful yet compact Hi-Fi 2 plays music from devices you already own (or those you wish to purchase), and is so easy to operate that anyone can enjoy it. Use the free app on your iPad, iPod Touch, or iPhone to control audio sources, volume levels, etc. Use the optional Bluetooth input to wirelessly stream music from your tablet, notebook, or smartphone!"