Researchers Find Serious Security Flaws in Universal Plug and Play

Toggle sidebar Toggle sidebar
D

dawks

Diamond Member
Oct 9, 1999
5,071
2
81
Hmm, UPnP has been a huge security problem since it was introduced, but the fact that its accessible/exploitable from the public internet is astonishing. I wonder how many routers will respond to UPnP commands, even when UPnP is 'disabled'. Some routers sill respond to WPS even when its 'disabled'.
 
VirtualLarry

VirtualLarry

No Lifer
Aug 25, 2001
56,571
10,207
126
Wow, I wonder if the UPnP code used by Tomato and DD-WRT is vulnerable or not? At least, if it is, it's sure to be fixed fairly quickly.
 
sao123

sao123

Lifer
May 27, 2002
12,653
205
106
hmm... tool to detect if your UPnP is affected requires another affected software...

Cant say im inclined to install Java just to run this tool.
 
_Rick_

_Rick_

Diamond Member
Apr 20, 2012
3,952
70
91
VirtualLarry said:
Wow, I wonder if the UPnP code used by Tomato and DD-WRT is vulnerable or not? At least, if it is, it's sure to be fixed fairly quickly.
Click to expand...

Mini-UPnP is supposedly safer from version 1.4 on.
1.0 release has been the main culprit, and is probably on both those distributions.
As long as you don't run the UPnP on the external interface, you should be safe though.
 
mechBgon

mechBgon

Super Moderator<br>Elite Member
Oct 31, 1999
30,699
1
0
Here's a list (undoubtedly not definitive) of more affected routers and devices:

http://blog.defensecode.com/2013/02/defensecode-security-advisory-cisco.html

Tons of brands listed there, skim down for yours.

On a similar note, D-Link has some routers that are vulnerable to rooting and code execution by unauthenticated attackers. More info here: http://news.softpedia.com/news/Vuln...ackers-to-Execute-Malicious-Code-327246.shtml

D-Link has been notified of the problem, but the company doesn&#8217;t plan on doing anything about it, arguing that &#8220;this is a security problem from the user and/or browser.&#8221;
Click to expand...

Wow. Guess I know one brand to never consider buying... :hmm:
 
R

redbleed

Junior Member
Feb 10, 2013
12
0
0
Google grc shields up. The site has the ability to check your UPnP router vulnerability. No download required.
 
blankslate

blankslate

Diamond Member
Jun 16, 2008
8,776
556
126
redbleed said:
Google grc shields up. The site has the ability to check your UPnP router vulnerability. No download required.
Click to expand...

I went to that site since I last used to to check for open ports on a Vista Firewall behind a Netgear router and it showed up clean....

It might be because I went through the router settings and made sure to turn off things that I didn't need. UPnP might have been one of then.

I also have the UPnP service set to disabled as well.
 
MrColin

MrColin

Platinum Member
May 21, 2003
2,403
3
81
VirtualLarry said:
Wow, I wonder if the UPnP code used by Tomato and DD-WRT is vulnerable or not? At least, if it is, it's sure to be fixed fairly quickly.
Click to expand...

It looks like most open source implementations are affected. There's a thread on the DD-WRT forum about it. I don't know about tomato but I don't think it will be patched for the freely distributed dd-wrt very soon.
 
You must log in or register to reply here.

TRENDING THREADS

COMPANY
RESOURCES
FOLLOW
Top Bottom