| Forum Home | ||||
| PC World Chat | ||||
| Thread ID: 140425 | 2015-10-10 00:44:00 | Netgear router vulnerability | Greg (193) | PC World Chat |
| Post ID | Timestamp | Content | User | ||
| 1409632 | 2015-10-10 00:44:00 | BBC article here (www.bbc.com). | Greg (193) | ||
| 1409633 | 2015-10-10 04:20:00 | BBC article here (www.bbc.com). So, to take advantage of the "exploit" you have to have LAN access then guess the password? So where's the exploit? :illogical |
fred_fish (15241) | ||
| 1409634 | 2015-10-11 05:45:00 | Nothing new here. Unfortunately. Plenty of routers have vulnerabilities, many never get patched . Most owners dont even change the default admin password . Some routers came standard allowing admin access from the wan/wifi/internet (just stupid) Same with some NAS's , security cams/webcams , and other devices that connect to the internet. Plenty of security holes out there. One device even had the default password permanently hard coded in , so was open to anyone !!!! The problem is, that manufactures dont really care with the low end, low profit , mass produced devices. |
1101 (13337) | ||
| 1409635 | 2015-10-12 00:52:00 | So, to take advantage of the "exploit" you have to have LAN access then guess the password? "The vulnerability allows attackers to gain access to the router settings without needing to provide login credentials" |
pctek (84) | ||
| 1409636 | 2015-10-12 02:16:00 | Should have quoted it, as they have now changed the article - previously Mr Wu said what I paraphrased above. | fred_fish (15241) | ||
| 1409637 | 2015-10-12 03:00:00 | Yep, quite a few routers have issues like that. I can name a bunch of TP-Link and D-Link ones that do, and as they are only a cheap router, and EOL the manufacturers aren't going to do anything about it. | wratterus (105) | ||
| 1409638 | 2015-10-12 03:42:00 | A wee:yuck: list here, some 'secure' brands as well . There will be other 'undocumented' vulnerabilities as well . Its scary stuff, just no way to know for sure if your router is really safe . . org/bugs . php" target="_blank">routersecurity . org |
1101 (13337) | ||
| 1409639 | 2015-10-12 20:38:00 | A wee:yuck: list here, some 'secure' brands as well. There will be other 'undocumented' vulnerabilities as well. Its scary stuff, just no way to know for sure if your router is really safe . routersecurity.org Mine's running OpenWRT which has a pretty damn good track record. Nice site link though :) |
Chilling_Silence (9) | ||
| 1409640 | 2015-10-13 06:41:00 | Mine's running OpenWRT which has a pretty damn good track record. Nice site link though :) Although may soon be goneburger - manufacturers are being required (in the US) to prevent the ability to change the device parameters outside FCC mandated limits - and the best way to be compliant (and limit exposure to very expensive sanctions) is to simply prevent installation of third party firmware. |
fred_fish (15241) | ||
| 1409641 | 2015-10-14 03:40:00 | Good thing TP-Link is from China then right? ;) | Chilling_Silence (9) | ||
| 1 | |||||