A serious vulnerability in a popular Belkin router could be exploited by a local, unauthenticated attacker to gain full control over affected devices.
The good news is that the bug has already been patched by Belkin. The bad news is that approximately nobody installs router firmware updates.
The vulnerability exists in the guest network Web interface of Belkin’s N750 DB Wi-Fi Dual-Band N+ Gigabit Router (firmware version F9K1103_WW_1.10.16m). In this particular router, the guest network functionality is turned on by default and there is no authentication required to join it.