Re: exploiting printers, home routers & smb routers

From: hellNbak (hellnbak@nmrc.org)
Date: 08/22/02 

Date: Thu, 22 Aug 2002 12:55:50 -0400 (EDT)
From: hellNbak <hellnbak@nmrc.org>
To: chrisd@cissmb.pointclark.net

Sure why not. If you are able to remotely get a firmware on to a Linksys
box you can have fun. I seem to remember (does anyone know for sure??)
that the very first firmware on the Linksys DSL routers had a bit of an
issue that has been fixed but how many users of these devices actually
upgrade them? The target market is the home and small office guys who
might not know enough to be updating things.

On Thu, 22 Aug 2002 chrisd@cissmb.pointclark.net wrote:

> Date: Thu, 22 Aug 2002 11:09:06 -0400 (EDT)
> From: chrisd@cissmb.pointclark.net
> To: vuln-dev@securityfocus.com
> Cc: fx@phenoelit.de
> Subject: exploiting printers, home routers & smb routers
>
> I read the black hat presentation on exploiting printers:
>
> http://www.blackhat.com/presentations/bh-usa-02/bh-us-02-phenoelit-network.pdf
>
> , good stuff & a real eye opener!
>
> I started thinking ..., I'm no hardware expert but couldn't this be
> modified & applied to all the home & small business routers ??? (linksys,
> smc, d-link, etc ...)
>
> As we all know so many of them are:
>
> - can be configured through a web interface
> - their default config is not changed
> - are accessible through inet (lack of config)
> - keep their default accounts (lack of config)
> - new firmware can be uploaded
>
> My question, could something similar to exploiting printers be done to
> routers or would the hardware be totally incompatible ?
>
> ch,
>
> 

-- 
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

"I don't intend to offend, I offend with my intent"

hellNbak@nmrc.org
http://www.nmrc.org/~hellnbak

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-

Relevant Pages

  • Re: Linksys BEFSX41
    ... >>Any thoughts or criticisms on the Linksys BEFSX41 w/ firmware v1.43.3? ... >I purchased three of those routers, and was not able to complete the ...
    (comp.security.firewalls)
  • Re: alt.net.wireless.NOT.FILLED.WITH ANAL RETENTIVE.PRICKS
    ... Anything you can buy today has missing features. ... were routers that did not support WPA. ... The web site lists the latest firmware for the SMC7004WBR as dated ... Linksys box? ...
    (alt.internet.wireless)
  • RE: exploiting printers, home routers & smb routers
    ... The problem with trying to change the firmware form the outside is that the ... routers only allow firmware changes from the internal interface. ... exploiting printers, ... > - are accessible through inet (lack of config) ...
    (Vuln-Dev)
  • [NEWS] Vulnerability Report for Linksys Devices
    ... - Linksys BEFSR81. ... Firmware v1.42.7 ... Known to be vulnerable to some of the bugs here described: ... them, as far as Carlos could verify, are post authentication. ...
    (Securiteam)
  • CORE-20021005: Vulnerability Report For Linksys Devices
    ... Vulnerability Report For Linksys Devices ... Remotely exploitable Buffer overflows and Authentication ... on the internet, upload a new firmware, and perform any other configuration ...
    (Bugtraq)