Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Network Networking Security

Vulnerabilities Affecting Over One Million Dasan GPON Routers Are Now Under Attack (bleepingcomputer.com) 27

Two vulnerabilities affecting over one million routers, and disclosed earlier this week, are now under attack by botnet herders, who are trying to gather the vulnerable devices under their control. From a report: Attacks started yesterday, Thursday, May 3, according to Netlab, the network security division of Chinese cyber-security vendor Qihoo 360. Exploitation of these two flaws started after on Monday, April 30, an anonymous researcher published details of the two vulnerabilities via the VPNMentor blog. His findings detail two flaws -- an authentication bypass (CVE-2018-10561) and a remote code execution vulnerability (CVE-2018-10562). The most ludicrous of these two flaws is the first, which basically allows anyone to access the router's internal settings by appending the "?images" string to any URL, effectively giving anyone control over the router's configuration.
This discussion has been archived. No new comments can be posted.

Vulnerabilities Affecting Over One Million Dasan GPON Routers Are Now Under Attack

Comments Filter:
  • by tomhath ( 637240 ) on Friday May 04, 2018 @09:20AM (#56553604)

    The most ludicrous of these two flaws is the first, which basically allows anyone to access the router's internal settings by appending the "?images" string to any URL, effectively giving anyone control over the router's configuration.

    Sounds more like a backdoor

    • by Anonymous Coward

      Sounds like Very Sloppy Coding.

      If you had to implement a backdoor, wouldn't you want to conceal it a bit better ???

    • Comment removed based on user account deletion
    • It depends. If it's a US product then it's most likely a backdoor, if it's made in Asia, particularly China, it's standard programming practice.

      That's not snark, it really is, security is just a zero-priority thing for products from there. And when you find the vulns there's close to zero chance of ever getting them fixed.

  • by Anonymous Coward

    It's a Chinese router, enough said.

    • It's a South Korean company, although the routers are probably built in China.
  • Oh give me LAN, lots of LAN...

The 11 is for people with the pride of a 10 and the pocketbook of an 8. -- R.B. Greenberg [referring to PDPs?]

Working...