ASUS routers contain a vulnerability that turns users into admins, researcher Joshua Drake says. The boxes could be exploited by malicious local users, but not those on the wider internet, re-rerouting all users on the network to malicious sites, among other attacks. Drake wrote in an advisory that several popular models were affected including the RT-N66U and RT-AC66U. "Currently, all known firmware versions for applicable routers are assumed vulnerable," Drake said. ASUS has been contacted for comment.