[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

[LUG] Router vulnerability

To: list@xxxxxxxxxxxxx
Subject: [LUG] Router vulnerability
From: Allister Gearon <tag@xxxxxxxxx>
Date: Thu, 24 Jan 2008 17:52:41 +0000
Content-disposition: inline

Hi all,
I don't know whether this has been flagged up on the list already (I don't 
remember seeing it), but a rather serious vulnerability shared by 99% 
(apparently) of all routers exists.  I originally saw it listed here;

http://www.channelregister.co.uk/2008/01/15/home_router_insecurity/

and the details are here;

http://www.gnucitizen.org/blog/hacking-the-interwebs

an here;

http://www.gnucitizen.org/blog/flash-upnp-attack-faq

Apparently the only fix is to turn off uPnP on your router, if your are lucky 
enough to have such as option.  Mine didn't.  : (
Apologies if you already know all about it.
Cheers
Allister

-- 
The Mailing List for the Devon & Cornwall LUG
http://mailman.dclug.org.uk/listinfo/list
FAQ: http://www.dcglug.org.uk/linux_adm/list-faq.html

Follow-up: Re: [LUG] Router vulnerability
- From: Grant Sewell
Follow-up: Re: [LUG] Router vulnerability
- From: Neil Winchurst

Prev by Date: [LUG] Open Source event in Bristol 5th Feb
Next by Date: Re: [LUG] Open Source event in Bristol 5th Feb
Previous by thread: Re: [LUG] Open Source event in Bristol 5th Feb
Next by thread: Re: [LUG] Router vulnerability
Index(es):
- Date
- Thread