gb2000ie
Super Vip
- Joined
- Dec 19, 2010
- Messages
- 4,529
- Reaction score
- 325
- Points
- 0
Hi all,
A major security problem affecting literally millions of home routers has been found. You can get the details here: https://community.rapid7.com/commun...s-in-universal-plug-and-play-unplug-dont-play
This flaw affects 9,600 different makes and models of network device, including many big-brand routers including those from Cisco/LinkSys, and ZyXEL. The biggest exception is Apple, their Airport range of routers are not affected by this problem.
You need to test if you are vulnerable ASAP - thankfully that's easy to do, just go to http://refhide.com/?http://upnp-check.rapid7.com/ and click "Scan My Router" - the test takes about 30 seconds and then you'll know where you stand.
If the test fails, you need to log into your router and disable UPnP, then test again. If the test still fails then you have one of the REALLY broken routers that doesn't even obey it's own settings, and you need to get a new one that is not so broken.
ISPs have it in their power to protect all their users from this with a simple firewall rule that blocks UDP traffic on just one port, so if you are vulnerable, another avenue you can peruse is to get your ISP to do the right thing. Mind you, if your ISP is anything like the typical ISP, this is probably not going to be a fruitful avenue, and you'll most likely have to take matters into your own hands and fix your own router.
If you provide tech support to friends of family, send them the link too and make them test their routers ASAP.
This is a really big deal folks - don't ignore this problem!
B.
A major security problem affecting literally millions of home routers has been found. You can get the details here: https://community.rapid7.com/commun...s-in-universal-plug-and-play-unplug-dont-play
This flaw affects 9,600 different makes and models of network device, including many big-brand routers including those from Cisco/LinkSys, and ZyXEL. The biggest exception is Apple, their Airport range of routers are not affected by this problem.
You need to test if you are vulnerable ASAP - thankfully that's easy to do, just go to http://refhide.com/?http://upnp-check.rapid7.com/ and click "Scan My Router" - the test takes about 30 seconds and then you'll know where you stand.
If the test fails, you need to log into your router and disable UPnP, then test again. If the test still fails then you have one of the REALLY broken routers that doesn't even obey it's own settings, and you need to get a new one that is not so broken.
ISPs have it in their power to protect all their users from this with a simple firewall rule that blocks UDP traffic on just one port, so if you are vulnerable, another avenue you can peruse is to get your ISP to do the right thing. Mind you, if your ISP is anything like the typical ISP, this is probably not going to be a fruitful avenue, and you'll most likely have to take matters into your own hands and fix your own router.
If you provide tech support to friends of family, send them the link too and make them test their routers ASAP.
This is a really big deal folks - don't ignore this problem!
B.
Last edited:
