Random Thread - Anything Goes

Joy

A Former User

why SOHO routers are generally just bad news

Youtube Video

dafyre

@thecreativeone91 -- As I understand it, in order for the attacker to be able to execute this, they actually have to be connected to your wireless device or you have to have the web interface available to the interwebz. Am I right in this thinking?

A Former User

@dafyre said:

@thecreativeone91 -- As I understand it, in order for the attacker to be able to execute this, they actually have to be connected to your wireless device or you have to have the web interface available to the interwebz. Am I right in this thinking?

Nope, the vulnerability is in the chipset itself. If you can get traffic too the unit even without being authenticated on wireless or even to the device at all, you can do remote script execution. Not the first time this has happened either. Even worse is some of these devices will have upnp enabled even on the WAN.

dafyre

@thecreativeone91 said:

@dafyre said:

@thecreativeone91 -- As I understand it, in order for the attacker to be able to execute this, they actually have to be connected to your wireless device or you have to have the web interface available to the interwebz. Am I right in this thinking?

Nope, the vulnerability is in the chipset itself. If you can get traffic too the unit even without being authenticated on wireless or even to the device at all, you can do remote script execution. Not the first time this has happened either. Even worse is some of these devices will have upnp enabled even on the WAN.

So any traffic? Even a specially crafted packet sent to my router on port 80 from the WAN could trigger this vulnerability -- even if I have remote management turned off?

Hmm.... Time to go see if my router is on that list.

A Former User

@dafyre said:

@thecreativeone91 said:

@dafyre said:

@thecreativeone91 -- As I understand it, in order for the attacker to be able to execute this, they actually have to be connected to your wireless device or you have to have the web interface available to the interwebz. Am I right in this thinking?

Nope, the vulnerability is in the chipset itself. If you can get traffic too the unit even without being authenticated on wireless or even to the device at all, you can do remote script execution. Not the first time this has happened either. Even worse is some of these devices will have upnp enabled even on the WAN.

So any traffic? Even a specially crafted packet sent to my router on port 80 from the WAN could trigger this vulnerability -- even if I have remote management turned off?

Hmm.... Time to go see if my router is on that list.

Well the firewall should stop it, but it may not. I wouldn't count on a poorly made peice of junks firewall to stop all packets. But some ports tend to be open by defualt on the wan with these units. UPNP has been open to the WAN many times on these before.

dafyre

You can quit trying to hack my home connection... It's not Realtek. 8-)

MattSpeller

Absolutely kick ass use for a 3d printer

https://hackaday.io/project/5739-locking-ball-and-socket-gooseneck-system

dafyre

@MattSpeller I think Dodge used a similar idea for their Dodge Durangos back around 2004 or 2005... I hope it works out good for what this guy is doing though!

A Former User

Youtube Video

A Former User

Youtube Video

A Former User

I have to laugh when someone post basically claiming they've been a professional editor yet.. they can't even tell a story. Screams amateur hour.

Youtube Video

http://community.spiceworks.com/topic/949320-group-of-the-week-video-editing?page=1#entry-4616738

MattSpeller

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

handsofqwerty

@MattSpeller said:

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

That's funny...LOL

scottalanmiller

@MattSpeller said:

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

It's not a site dedicated to people taking videos of themselves popping zits?

scottalanmiller

@handsofqwerty said:

@MattSpeller said:

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

That's funny...LOL

Filter fail.

A Former User

@scottalanmiller said:

@MattSpeller said:

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

It's not a site dedicated to people taking videos of themselves popping zits?

It looks very malware like.. I don't know why I get the felling it just looks sketchy.

A Former User

@scottalanmiller said:

@handsofqwerty said:

@MattSpeller said:

Just had the porn RED ALERT email from our firewall.

"myxits.com"

Is actually about interior decorating lol

That's funny...LOL

Filter fail.

Seems like proxies filters where designed for false positives some how. DNS filter seems so much better than proxies these days.

A Former User

scottalanmiller

@thecreativeone91 said:

Bwahahaha.