Slashdot Mirror

← Back to Stories (view on slashdot.org)

Backdoor Discovered In Netgear and Linkys Routers

Posted by samzenpus on from the protect-ya-neck dept.

An anonymous reader writes "A hacker has found a backdoor in the Linksys WAG200G router, that gives access to the admin panel without authentication. Further research shows that these devices are made by Sercomm, meaning that Cisco, Watchguard, Belkin and various others maybe affected as well. From the article: 'The backdoor requires that the attacker be on the local network, so this isn’t something that could be used to remotely attack DSL users. However, it could be used to commandeer a wireless access point and allow an attacker to get unfettered access to local network resources.'"

4 of 189 comments (clear)

  1. not exclusively local by Anonymous Coward · · Score: 5, Informative

    http://www.shodanhq.com/search?q=port%3A32764

  2. malware = local by SethJohnson · · Score: 5, Informative

    Attacking the router from inside the network is only a matter of infecting a computer inside the network.

    Then the compromised computer is used to modify the DNS settings.

    Then the whole network depending on the router to provide proper DNS is now visiting whatever hosts the attackers desire.

    --
    $5 / month hosted VPS on linux = awesome!
  3. Re:OpenBSD by grub · · Score: 5, Informative

    As a gateway/router/wifi point, OpenBSD is excellent. My comment is very relevant to the story.
    For example, my own setup has OpenBSD acting as a router/NAT/etc. box. For guests there is a wifi network it broadcasts and routes only to the world. Also has a VLAN for DMZ, outside accessible services, etc.
    It's not name dropping if it's true.

    --
    Trolling is a art,
  4. Re: OpenBSD by TooTechy · · Score: 5, Informative

    Small comment.

    I have a Netgear router with Tomato running on it with over 730 days of uptime!