Reddit users point out that security researcher Eloi Vanderbeken has posted documentation to GitHub indicating they've found an exploit in a number of older DSL modem gateways made by both Netgear and Linksys. Vanderbeken posted uh, creative Powerpoint presentations and sample code highlighting how the exploits allow an intruder to reset a machine's configuration and gain access to the devices' administrative control panel. So far, he's confirmed the backdoor is present in the Linksys WAG200G, Netgear DM111Pv2, Linksys WAG320N, Linksys WAG54G2, DGN1000 Netgear N150, Netgear DG834G, and Diamond DSL642WLG. The (sort of) good news? It requires the attacker be on your local network.
There is no way to disable this "feature". Even if you change the administrator password on your router, it does not change the default password used to enable telnet access. Even brand new models like the R7000 are affected by this. -- to whoever anonymously gave me premium membership... thanks!
Sadly there is no solid OpenWRT for the R7000. Something about NAND memory. DD-WRT build by Kong is alright, but still too buggy for daily use. Hopefully soon! -- to whoever anonymously gave me premium membership... thanks!
A huge number of businesses small and large use these products. Partly because they are cheap and partly because they don't know any better. -- I do not, have not, and will not work for AT&T/Comcast/Verizon/Charter or similar sized company.
2014-Jan-2 5:43 pm: ·
loli Premium join:2002-08-26 South Richmond Hill, NY
From what I understand he is actually respected in the field.....but...yeah.
2014-Jan-2 5:32 pm: ·
Link Logger Premium,MVM join:2001-03-29 Calgary, AB kudos:3
Just some good old fashion hacking, nice to see, but if the bad guy is on your LAN it probably doesn't matter which one of like a billion technique they use to finish you off. Again I have to said, nice bit of hacking though, points for being old school (really the only school but hey whats a buffer overflow between friends). As far as the presentation went, I hate write ups too. -- Vendor: Author of Link Logger which is a traffic analysis and firewall logging tool
and it's running DD-WRT. I need to ask over at the DD-WRT forum and see what their response is to this. Oh yeah- I need to put my Smoothwall system back in the mix. I guess I've been slippin'. -- Why do cement trucks and school buses go too fast?