dslreports logo
site
 
    All Forums Hot Topics Gallery
spc

spacer




how-to block ads


Search Topic:
uniqs
72
share rss forum feed


planet

join:2001-11-05
Oz
kudos:1
Reviews:
·Cox HSI
reply to trparky

Re: Security Flaws in Universal Plug-n-Play: Unplug, Don't Play

List of effected Linksys routers:

Linksys Products Impacted
The following devices have been confirmed as impacted by this vulnerability:

1. E900
2. E1200 v2
3. E1000 v2.1
4. E1500
5. M10 v2
6. WRT610N v1
7. WRT610N v2

The following devices have been confirmed as NOT IMPACTED by this vulnerability:

1. E2500
2. RE1000
3. E1000 v2
4. E1000 v1
5. E1200 v1
6. E1550
7. E3200
8. E4200
9. M10 v1
10. M20
11. WRT160N v3
12. WRT310N v2
13. All EA series

Found here:
»homekb.cisco.com/Cisco2/ukp.aspx···id=28341

Figures my E1500 is effected. I've always disabled UPnP on my router anyway but if I ever want to play games online with my xbox, I may need to.



trparky
Apple... YUM
Premium,MVM
join:2000-05-24
Cleveland, OH
kudos:2

»www.4shared.com/file/7shFFAB3/to···012.html
That should get you secured. That's a third-party firmware file for the E1500.



Bill_MI
Bill In Michigan
Premium,MVM
join:2001-01-03
Royal Oak, MI
kudos:2
Reviews:
·WOW Internet and..

2 edits
reply to planet

said by planet:

Figures my E1500 is effected. I've always disabled UPnP on my router anyway but if I ever want to play games online with my xbox, I may need to.

Hi planet. I'm really curious and Linksys is no help.

The problem is 2-fold. 1) UPnP code is exploitable. 2) UPnP services are exposed to the net (WAN) interface. This is specifically what the GRC scan looks for.

1) isn't good but it's DOUBLE HORRIBLE if you also have 2).

Anyone daring, enable UPnP and see if the »grc.com ShieldsUp! scan detects it. I'm thinking no. This means it's just bad but not horrible.

EDIT: There's a giant leap of vulnerability between 1) and 2). Reports are in that there's active scanning from many sources, for item 2) at this time so don't be feeding the bad guys unnecessarily if you don't have good recovery techniques.


norwegian
Premium
join:2005-02-15
Outback


I'm starting to wonder what exactly needs to be in place to stop this, I'm thinking the GRC site is not a valued test for this.