D-Link Routers Vulnerable To DNS Hijacking

← Back to Stories (view on slashdot.org)

D-Link Routers Vulnerable To DNS Hijacking

Posted by samzenpus on Thursday January 29, 2015 @11:27AM from the protect-ya-neck dept.

An anonymous reader writes At least one and likely more D-Link routers as well as those of other manufacturers using the same firmware are vulnerable to remote changing of DNS settings and, effectively, traffic hijacking, a Bulgarian security researcher has discovered. Todor Donev, a member of the Ethical Hacker research team, says that the vulnerability is found in the ZynOS firmware of the device, D-Link's DSL-2740R ADSL modem/wireless router. The firmware in question is implemented in many networking equipment manufactured by D-Link, TP-Link Technologies and ZTE.

5 of 64 comments (clear)

Min score:

Reason:

Sort:

Every day by Anonymous Coward · 2015-01-29 11:32 · Score: 3, Funny

I get on my knees and give thanks to OpenWRT.
1. Re:Every day by FatdogHaiku · 2015-01-29 12:47 · Score: 5, Funny
  
  When a binary and an analog love each other, that's all that matters.
  How they compile in the privacy of their home is no ones business.
  And soon you may hear the pitter patter of little dependencies...
  
  --
  You have the right to remain sentient. If you give up the right to remain sentient, you will be elected to public office
2. Re:Every day by fustakrakich · 2015-01-29 17:34 · Score: 3, Funny
  
  Yeah, but then the includes move in...
  
  --
  “He’s not deformed, he’s just drunk!”
Re:Manual config by wierd_w · 2015-01-29 11:42 · Score: 4, Interesting

The hardware isnt all that bad most of the time, it's the shitty horrible firmwares they run.
Frequently, it's an old, horribly butchered hackjob of openwrt under there these days. Something unholy running a 2.6 era kernel, and with drivers with more hacked patches attached than a 4th century beggar's clothes.
Getting that old filth flushed out and replaced with something properly maintained is a GOOD thing. The router (hw wise) itself usually isnt all that bad.
Netgear tends to be a bit better, but overpriced. Belkin can go die in a fire though.
Why leave remote administration on? by ciscoguy01 · 2015-01-29 11:44 · Score: 5, Insightful

Why leave remote administration on?
I would avoid opening the web UI of any home router on the WAN side.
It's mostly unnecessary and a needless security exposure.

--
.