Researcher Uncovers Backdoor In DSL Routers

  /     /     /  
Publicated : 22/11/2024   Category : security


Researcher Uncovers Backdoor In DSL Routers


Flaw in DSL routers could give attackers full, unauthenticated administrative access, researcher says



A researcher has discovered what he describes as a backdoor in DSL routers that could enable attackers to gain administrative access.
In a
post on the GitHub site
, researcher Eloi Vanderbeken offers a proof of concept showing how he was able to crack his own Linksys DSL router and gain administrative access to a home network without authentication. Subsequent posts indicate that the proof of concept would also work on routers made by other vendors.
The backdoor was found through scans of a little-known port, 32764/TCP, which is now being scanned more broadly, according to
the Internet Storm Center (ISC)
.
We do see a lot of probes for port 32764/TCP, says ISCs Johannes Ullrich in an online post. At this point, I urge everybody to scan their networks for devices listening on port 32764/TCP. If you use a Linksys router, try to scan its public IP address from outside your network.
Our data shows almost no scans to the port prior to today, but a large number from 3 source IPs [on Jan. 2], ISCs post says.
Have a comment on this story? Please click Add a Comment below. If youd like to contact
Dark Readings
editors directly,
send us a message
.

Last News

▸ Scan suggests Heartbleed patches may not have been successful. ◂
Discovered: 23/12/2024
Category: security

▸ IoT Devices on Average Have 25 Vulnerabilities ◂
Discovered: 23/12/2024
Category: security

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
Researcher Uncovers Backdoor In DSL Routers