2Wire Cross Site Request Forgery Vulnerability Page 2

Author	All Replies
bjparker join:2004-09-13 England 2 edits	reply to Oligarchy Re: 2Wire Cross Site Request Forgery Vulnerability I've probably started a very red herring here! A little knowledge is a dangerous thing! I'll tell you the story now because it seems to have vanished. I recently installed Pidgin because I became fed-up with the connection diarrhoea from Yahoo IM. My software firewall was in learning mode and learnt to allow Pidgin to connect to 239.255.255.250 . When I pinged this address the router responded, despite having it's address set to 192.168.n.m and no router DNS or DHCP. Then I checked and found it to be a IP multicast address only, and found it would not accept http when I tried. I did wonder whether Pidgin used broadcast mode to do its UPnP bit of opening ports. My ignorance is total in this area. Now I can't replicate the behaviour! I can't even ping that address! Apologies for winding you all up about it, it really was not intentional. EDIT - Aha! I view some video on youtube and lo: Pinging 239.255.255.250 with 32 bytes of data: Reply from 192.168.n.m: bytes=32 time=1ms TTL=255 Reply from 192.168.n.m: bytes=32 time=1ms TTL=255 Reply from 192.168.n.m: bytes=32 time=1ms TTL=255 Reply from 192.168.n.m: bytes=32 time=1ms TTL=255 Ping statistics for 239.255.255.250: Packets: Sent = 4, Received = 4, Lost = 0 (0% loss), Approximate round trip times in milli-seconds: Minimum = 1ms, Maximum = 1ms, Average = 1ms Note that I've edited my router address.
bjparker join:2004-09-13 England 2 edits	to forum · permalink · · 2008-05-05 03:40:41 ·
koolkid1563 Premium,MVM join:2005-11-06 Powell, WY clubs:	Is n.m the default 1.254, or is it whatever IP you have moved the 2wire to?
	to forum · permalink · · 2008-05-05 17:57:14 ·
sodagreen join:2007-01-13 Taiwan	reply to Oligarchy Here are AT&T's instructions on how to verify you have been patched and are secure. »helpme.att.net/article.php?item=11659
sodagreen join:2007-01-13 Taiwan	to forum · permalink · · 2008-05-21 20:51:48 ·
remarc join:2007-08-10 Philippines	well... finally, a new patch. its loong been overdue. lolz!
remarc join:2007-08-10 Philippines	to forum · permalink · · 2008-05-23 13:19:05 ·
jr9730 join:2000-11-22 Torrance, CA	reply to Oligarchy Chances are its been on your 2Wire for weeks to months by now without you knowing it.. : )
jr9730 join:2000-11-22 Torrance, CA	to forum · permalink · · 2008-05-31 23:58:55 ·


Wednesday, 02-Dec 20:51:31	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com. page compression OFF