Re: several vulnerabilities present in Belkin wireless routers
From: Steve Kemp (steve_at_steve.org.uk)
Date: 07/15/05
- Previous message: Michal Zalewski: "Compromising pictures of Microsoft Internet Explorer!"
- In reply to: m123303_at_securityfocus.com,: "several vulnerabilities present in Belkin wireless routers"
- Next in thread: Ian Clelland: "Re: several vulnerabilities present in Belkin wireless routers"
- Reply: Ian Clelland: "Re: several vulnerabilities present in Belkin wireless routers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 15 Jul 2005 16:37:10 +0100 To: m123303@securityfocus.com, "[at]"@securityfocus.com, richmond.ac.uk@securityfocus.com
On Fri, Jul 15, 2005 at 08:14:14AM -0000, m123303@securityfocus.com wrote:
> The first problem is the existance of a default telnet backdoor
> running on the usual 23/tcp port. From my experience, telnet
> interfaces are NOT enabled by default in wireless routers but rather,
> they usually need to be enabled from their administrative web
> interfaces manually:
>
>
> <Start of output>
>
> Starting nmap 3.75 ( http://www.insecure.org/nmap/ ) at 2005-06-06
> 18:34 BST
> Initiating SYN Stealth Scan against BelkinModem.Belkin (192.168.2.1)
The obvious question to ask here, is "Can the telnet service be
connected to from the WAN side?".
All the later content you present, whilst interesting, is of
less value if the attacker must be on the LAN side of the router.
Steve
-- # Debian System Administration www.debian-administration.org/
- Previous message: Michal Zalewski: "Compromising pictures of Microsoft Internet Explorer!"
- In reply to: m123303_at_securityfocus.com,: "several vulnerabilities present in Belkin wireless routers"
- Next in thread: Ian Clelland: "Re: several vulnerabilities present in Belkin wireless routers"
- Reply: Ian Clelland: "Re: several vulnerabilities present in Belkin wireless routers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
