[Nottingham] Many router reported to have port 32674 open

Rory Holland me at rory.sh
Wed Jan 8 09:10:36 UTC 2014 

In general, I'd agree with silently pushing firmware updates to consumer
routers - it's highly unlikely most router owners would think to check for
an update, and would go unaware of any unpatched security issues.


On 8 January 2014 08:06, Dan Caseley <dan at caseley.me.uk> wrote:

> Crikey! Since the Superhub doesn't have the option to block a port in the
> FW, I'll try redirecting it to a vacant IP.
> Firmware checks should surely be a pull mechanism, not a push?
>
> That's bumped replacing this crappy router up the priority list a bit!
> Thanks!
>
> Dan
>
> On 7 Jan 2014 10:17, "Jason Irwin" wrote:
> >
> > So this wee story is doing the rounds just now:
> >
> http://www.ghacks.net/2014/01/06/find-router-listening-backdoor-port-32764/
> >
> > And the great news is the VM SuperHub (both versions) is affected. Nice.
> > Of course, that only matters if you are using as a router.
> > And, of course, it only matters if that port is being used for "The
> > League of Evil" (or whatever).
> >
> > I know VM keep remote access to the router in order to push firmware
> > updates etc; so could this be the port they use for such a thing? Anyone
> > know?
> >
> > --
> > ╔═════════════╦══════════════════════════════════════════╗
> > ║ Jason Irwin ║ OpenPGP (GPG/PGP) Public Key: 0xD0C592B1 ║
> > ║             ║ Import from hkp://subkeys.pgp.net> > ╚═════════════╩══════════════════════════════════════════╝
> >
> > _______________________________________________
> > Nottingham mailing list
> > Nottingham at mailman.lug.org.uk
> > https://mailman.lug.org.uk/mailman/listinfo/nottingham
>
> _______________________________________________
> Nottingham mailing list
> Nottingham at mailman.lug.org.uk
> https://mailman.lug.org.uk/mailman/listinfo/nottingham
>



-- 
Rory Holland
me at rory.sh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.lug.org.uk/pipermail/nottingham/attachments/20140108/edb16351/attachment.html>

More information about the Nottingham mailing list