Researcher Find D-Link DWR-932 Router Is 'Chock Full of Holes'

Reader JustAnotherOldGuy writes: Security researcher Pierre Kim has unearthed a bucketload of vulnerabilities in the LTE router/portable wireless hotspot D-Link DWR-932. Kim found the latest available firmware has these vulnerabilities: Two backdoor accounts with easy-to-guess passwords that can be used to bypass the HTTP authentication used to manage the router
-A default, hardcoded Wi-Fi Protected Setup (WPS) PIN, as well as a weak WPS PIN generation algorithm
- Multiple vulnerabilities in the HTTP daemon
- Hardcoded remote Firmware Over The Air credentials
- Lowered security in Universal Plug and Play, and more.
"At best, the vulnerabilities are due to incompetence; at worst, it is a deliberate act of security sabotage from the vendor," says Kim, and advises users to stop using the device until adequate fixes are provided.

"Oh my God, it's full of holes!"

[neo-mkrey]

Of course it is David, it's D-Link.

Re:"Oh my God, it's full of holes!"

A friend of mine used to pronunce the name as "D minus link", as in just barely above total failure.

UPnP

D-Link sucks so bad its UPnP security is worse than none at all!

They

They just hired some teen with basic computing skills who can package and upload roms, zero security experts working at d-link in taiwan... (and they have plenty of educated people in the field there, but it's cheaper to hire a teen)

Re:They

This should not be an issue for you. As long as you are not the teen in question.

Sue them!

It's the only way they pay notice.

Those are "Speed Holes"

[decipher_saint]

For faster internet DUH

Re:Those are "Speed Holes"

[UnknowingFool]

Pschaw. Every one knows you also need racing stripes with speed holes for the fastest internet.

Re:Those are "Speed Holes"

[Neuronwelder]

LOL!!

Re:Those are "Speed Holes"

[Neuronwelder]

I was laughing at the speed holes comment, please to get me confused.

Re:Those are "Speed Holes"

[Anomalyst]

And an exrra cost $99 Munster power cable (withmatching racing stripe) the gold-plated prongs will smooth out those nasty voltage sags and reduce Petahertz heterodyning interference.

Re:Those are "Speed Holes"

It's smooths the current of data and reduces packet turbulence which brings down a net and another.

Re:Those are "Speed Holes"

[arglebargle_xiv]

For faster internet

And great justice!

Re:Those are "Speed Holes"

[KingMotley]

If they were serious about faster internet, they would paint their routers red instead of the slow white/black.

Same Tune, New Stanza

[TheHawke]

Do these sound familiar? Google Quanta router security holes. You'll find the issues that the D-Link has are remarkably similar to what the Quanta firmware had.

I could safely guess is that Quanta foisted the firmware and designs off onto D-Link for a small tune so they could recover some of the cost.

BTW, the tech that found the D-Link issues, found the holes in the Quanta routers as well.

Hey!

[halivar]

Guess who has two thumbs and bought a D-Link router yesterday?

*This* dumbass. :(

Re:Hey!

Guess who has two thumbs and bought a D-Link router yesterday?

*This* dumbass. :(

return it... we have to push back on bad products in a way that manufactures will understand, return the product as defective.

Re:Hey!

[A10Mechanic]

Bob Kelso? But seriously, never look at car prices after you've bought a car, and avoid SlashDot after buying tech gear.

Re:Hey!

[skegg]

Nice one, Alice.

Re:Hey!

[adolf]

Surely you can shove OpenWRT, Shibby's build of version of Tomato-USB, or (*shudder*) DD-WRT on the thing, yes?

Re:Hey!

[barc0001]

I haven't bought a D-Link router in years. They used to be all right value for the money but over the last 6-8 years it seems like the quality vastly varied between even small model revisions so I got tired of the D-Link Russian Roulette and started buying other routers. ASUS routers have been consistently good in my experience so far, Linksys is a crap shoot like D-Link so I avoid, NetGear is utilitarian but acceptable.

Re:Hey!

[Narcocide]

Linksys stopped being good sometime shortly after being sold to Cisco. NetGear is usually fine but will fall over under heavy traffic if you add too many custom routes.

Re:Hey!

[shellster_dude]

To quote the article:

As the router has a sizable memory (168 MB), a decent CPU and good free space (235 MB) with complete toolkits installed by default (sshd, proxy, tcpdump )

So why not just take advantage of having awesome hardware, and replace the crappy firmware with something else like OpenWRT?

Re: Hey!

Because only one in a hundred (one in a thousand?) purchasers will have any idea that such a thing exists, and only a small fraction of those will actually replace the firmware.

Re:Hey!

[adolf]

In this lesser Slashdot that we have these days (wherein I don't even see anyone saying "just use an old box for pfsense and be done"), I'll second Asus.

The stock firmware is allegedly built upon OpenWRT, and for those that like Tomato-USB/Shibby, they're generally all well-supported.

I have had many small networks that would have fallen over (and indeed, were actively falling-over), which were absolutely saved by proper QoS rules in Shibby's builds of Tomato-USB.

For the home-gamer: Multiple massive torrents, voip, and Netflix, Youtube, general web browsing and email, and low-latency gaming on the same absolutely-saturated cheap last-mile pipe? Easily handled, and all work fine.

Re:Hey!

[arglebargle_xiv]

I pretty much put D-Link on my permanent never-buy blacklist after having to play with a DSL-502. Dear ghod, how can you cram so much fail into such a small box?

Re:Hey!

[naughtynaughty]

Why use an old box for pfSense when you can buy an outstanding Intel N3150 based tiny box that consumes 10W for less than $130?

Stop buying routers for WiFi and buy a plain, simple AP and stick it behind pfSense.

Re:Hey!

[adolf]

Why do that, when for $50-$100 you can get an ARM box that just does everything -- including AP duties -- while also consuming insignificant power?

It even comes with a reasonably-good Gigabit switch that can also tackle VLAN duties.

Thanks for the flame, though. It almost felt like old times.

Re:Hey!

[Fnord666]

Why do that, when for $50-$100 you can get an ARM box that just does everything -- including AP duties -- while also consuming insignificant power?

It even comes with a reasonably-good Gigabit switch that can also tackle VLAN duties.

Would you mind sharing a link or at least a name?

Re:Hey!

[barc0001]

>(wherein I don't even see anyone saying "just use an old box for pfsense and be done")

As I've gotten older and I do this stuff for my day job my enthusiasm for doing it on off hours has waned, especially now that there are consumer devices that will get you 99% of the way there with very little hassle and the devices are silent and small compared to even an old HTPC case. A lot of people aren't going to customize anything if they can get close enough with an off the shelf product. That said, I did throw Tomato on my ASUS RT-N16 so perhaps I am not 100% sold on off the shelf.

Re:Hey!

[adolf]

Sure. I use one of these, with this firmware, making it a cute little self-contained Linux box with both a HTML GUI and a command-line interface that is as complete as you want to make it. (I've got a build environment on mine, just because I can.)

802.11ac, dual-core 800MHz ARM, 256MB of RAM and 128MB of flash (all of which are complete overkill for this application), along with multiple USB ports for plugging in random goodies.

There's Your Problem.

UPnP has no security.

Only morons leave it enabled on Home routers.

Re:There's Your Problem.

The problem manifested here is yours: only morons make blanket statements concerning the intelligence of large groups of people without clinical testing to back it up. Most of those people are not morons, they're just educated in other domains.

Re:There's Your Problem.

I tried, but it broke all of my consoles and several games. It's difficult to forward ports when they're randomly decided at the time the connection is about to be made.

Re: There's Your Problem.

IOW only a moron underestimates the power of large groups of other morons.

Re:There's Your Problem.

Most of those people are not morons, they're just educated in other domains.

And I'm still better than most people in their own domains even if I have no education or experience in their domain. If you considered "logic" as a domain that encompasses nearly domains except human interaction, then I'm a master in that super-domain.

Don't just stop using it.

At the very least return it for a full refund. If you feel litigious, sue D-Link. Backdoor accounts and other deliberate vulnerabilities must become expensive for the dickheads who make them.

So which routers have good security?

Cisco, Linksys, D-Link all have security problems. At this point I would hazard a guess that most routers have security problems.

So which SOHO routers *don't* have security problems? What can I tell my non-computer-savy relatives to get?

Do you have to flash DD-WRT software to improve the security situation?

Re:So which routers have good security?

[Narcocide]

What can I tell my non-computer-savy relatives to get?

An education, or at least better help.

Do you have to flash DD-WRT software to improve the security situation?

An old used PC with 2 or more ethernet ports that's running OpenBSD also does just fine.

Re:So which routers have good security?

[Gaygirlie]

I just assume they *all* have security-problems and look for routers that have the hardware-features I want and that are supported by OpenWRT instead.

Re:So which routers have good security?

[naughtynaughty]

An old used PC is such a memory hog, as well as likely being a space hog and noisy. You'll spend more money on electricity than the money it would take to buy a modern tiny PC to do the job better.

Intel N3150 based tiny PC, 2GB SODIMM and a 4GB flash drive will set you back $130. Silent, small as a fat paperback book and you'll save $50 in electricity per year compared to that old noise maker.

Reusing old PCs sounds environmentally friendly but it probably is short sighted.

Re:So which routers have good security?

[hodet]

I would love a Raspberry Pi with two Ethernet ports. That would be my new router.

Re:So which routers have good security?

Sorry to post as AC, but I don't have my password handy.

Buffalo has a line of SOHO routers that run DD-WRT from the factory. I use one and it's solid and reliable.

http://www.buffalotech.com/pro...

Re:So which routers have good security?

[hodet]

I recently bought a Cisco 4200v1 and D-Link DIR615 at a yardsale for $10. Slapped OpenWRT on them. $10 lol.

Re:So which routers have good security?

[Narcocide]

You're on the right track, but even if you add a second ethernet device the Raspberry Pi itself only has enough throughput to keep up with basic DSL speeds. There are other, less popular single-board ARM computers that would be better suited for this task.

Product recall time?

[davidwr]

Not only is it not fit for its advertised purpose, it's unsafe to use.

Re:Product recall time?

[Anomalyst]

Rough Nadir announces his new consumer retorts sponsored book
"Unsafe at any BPS"

D-link has always been shit

And always will be.

Fuck D-Link

[honestmonkey]

I've said it before. Fuck D-Link and fuck their routers. May they rot in hell.

Re:Fuck D-Link

[Anomalyst]

fuck their routers

Mixing saline bodily fluids and electrical equipment likely voids the warranty and that it's not the volts, its the amperage that's the real danger.

Re:Fuck D-Link

[hodet]

Shit you really hate D-Link.

loonix

loonix strikes again. stop using this crap people.. FFS!

Don't buy a router unless you can install openwrt.

[anwyn]

Where ever you look commercial routers are full of security vulnerabilities.

Researcher find?

[reboot246]

Who the hell wrote that headline? Is English your second language?

Re:Researcher find?

They only remind us the site is US centric. That doesn't mean the editors don't work from India now.....

Re:Researcher find?

Don't you get it?
It's newspaper headline style with 'find' as a nouned verb (where 'nouned' is a verbed noun).

flashrouters.com

Many of my wifi routers are now laptops running hostapd, but the ones that are not I buy with open firmware from these guys: https://www.flashrouters.com/

Re: flashrouters.com

[WarJolt]

You have some incredibly power hungry routers.

Re: Correction ( Score: +1, TrumpIsACokehead )

Far, far too verbose. I quit after the third made-up word. Admit it, you swallowed three sets of Scrabble and Will Self. Best stick your fingers down your throat before it happens again.

D-Link security

[Z80a]

Those D-Link routers are actually very, very secure.
No attacker (or you) are able to properly send or receive packets on it's network (when you can actually get in it), which thwart most attacks.

Re:Don't buy a router unless you can install openw

+1

The D-Link DWR-932 case is very tight...

[LordHighExecutioner]

...so they had to place holes elsewhere for a proper CPU venting.

D-Link is the most secure

[a_claudiu]

In fact is indestructible https://www.youtube.com/watch?...

Re:Don't buy a router unless you can install openw

The research for network protocols was done by the American universities as part of a government funded research program into fault-tolerant networks. The assumption had been that TCP/IP would always be run on networks in secure environments. They had some whack-a-doodle ideas (like trailer packets with the header at the end of the packet). Everything is documented in the RFC lists.

It took third party companies to clean up and optimize the TCP/IP stack, then sell it on as a usable product.

If you bought a router, it's junk.

If you bought a router, any router, it is only a matter of time before it will be compromised.

Do yourself a favor and use Smoothwall.

D-Link routers can be broken hardware wise too

[foxalopex]

I remember an article years ago of a D-Link router where they cheaped out and left out a filtering capacitor. An engineer figured this out because hilariously they left the solder pads on the actual circuit boards so a fix was to solder in your own filtering capacitor. The missing capacitor resulted in the power supply being noisy and eventually corrupting ram which would lead to the router crashing. D-Link of course in their brilliance figured the quick fix was to reboot your router every 15 minutes, stable connection be dammed. This wasn't even a bright decision in the long run because I imagine all the tech support calls would have killed whatever savings that single part meant.

At the end of the day folks, buy a good reliable router that works with opensource firmware. (I prefer shibby tomato.) and almost never experience problems again.

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re: Correction ( Score: +1, TrumpIsACokehead )

Maybe he will share :D