Slashdot Mirror

← Back to Stories (view on slashdot.org)

Vulnerabilities Affecting Over One Million Dasan GPON Routers Are Now Under Attack (bleepingcomputer.com)

Posted by msmash on from the call-IT dept.

Two vulnerabilities affecting over one million routers, and disclosed earlier this week, are now under attack by botnet herders, who are trying to gather the vulnerable devices under their control. From a report: Attacks started yesterday, Thursday, May 3, according to Netlab, the network security division of Chinese cyber-security vendor Qihoo 360. Exploitation of these two flaws started after on Monday, April 30, an anonymous researcher published details of the two vulnerabilities via the VPNMentor blog. His findings detail two flaws -- an authentication bypass (CVE-2018-10561) and a remote code execution vulnerability (CVE-2018-10562). The most ludicrous of these two flaws is the first, which basically allows anyone to access the router's internal settings by appending the "?images" string to any URL, effectively giving anyone control over the router's configuration.

27 comments

  1. Hey Laser Lips by Anonymous Coward · · Score: -1

    Your mother was a snowblower.

    1. Re: Hey Laser Lips by Anonymous Coward · · Score: 0

      Begone, vile degenerated Trump Eunuch!

  2. Flaws? by tomhath · · Score: 2

    The most ludicrous of these two flaws is the first, which basically allows anyone to access the router's internal settings by appending the "?images" string to any URL, effectively giving anyone control over the router's configuration.

    Sounds more like a backdoor

    1. Re:Flaws? by arglebargle_xiv · · Score: 1

      It depends. If it's a US product then it's most likely a backdoor, if it's made in Asia, particularly China, it's standard programming practice.

      That's not snark, it really is, security is just a zero-priority thing for products from there. And when you find the vulns there's close to zero chance of ever getting them fixed.

  3. It's a Chinese router by Anonymous Coward · · Score: 1

    It's a Chinese router, enough said.

    1. Re:It's a Chinese router by olsmeister · · Score: 1

      It's a South Korean company, although the routers are probably built in China.

  4. HIllary lost by Anonymous Coward · · Score: 0

    And you are also a loser.

  5. No by Anonymous Coward · · Score: 0

    Its apparently South Korean. That is even worse.

    1. Re:No by Anonymous Coward · · Score: 0

      Wouldn't North Korea be even worse?

  6. Really ? by Anonymous Coward · · Score: 1

    Sounds like Very Sloppy Coding.

    If you had to implement a backdoor, wouldn't you want to conceal it a bit better ???

    1. Re:Really ? by DontBeAMoran · · Score: 1

      Instead of using "?images" I would use "?notabackdoor".

      --
      #DeleteFacebook
  7. Use ?apps, NOT LUDDITE ?images! by Anonymous Coward · · Score: -1

    If you use ?apps instead of LUDDITE ?images, the LUDDITE router becomes a modern app apping device, and then you can app apps while apping other apps!

    Apps!

  8. offensive article by Anonymous Coward · · Score: -1

    "Exploitation of these two flaws started after on Monday, April 30, an anonymous researcher published details of the two vulnerabilities via the VPNMentor blog.

    His findings detail two flaws —an authentication bypass (CVE-2018-10561) and a remote code execution vulnerability (CVE-2018-10562)."

    Did the author of the BleepingComputer article, Catalin Cimpanu, just assume the gender of the anonymous researcher? Yes, disgusting so.

    1. Re: offensive article by Anonymous Coward · · Score: 0

      Actually, the sexism is built into English grammar. In English, the impersonal pronoun is the same as the male pronoun.

    2. Re: offensive article by tomhath · · Score: 1

      An SJW can't make that distinction. If it doesn't adhere to his definition of correct, it's disgusting ;^)

    3. Re: offensive article by green1 · · Score: 1

      While true, there is growing support for the gender neutral singular "They" pronoun, in fact, it's already well established.

      That said, using male pronouns in this case is also perfectly acceptable in English, and many style guides still insist on it.

    4. Re:offensive article by Anonymous Coward · · Score: 0

      Shut up cocksucker unless you have something useful to add. Otherwise kill yourself. Now.

    5. Re: offensive article by Anonymous Coward · · Score: 0

      That is stupid. One does not simply conflate the singular with the plural.

    6. Re: offensive article by green1 · · Score: 1

      To be modded funny? Or oblivious?

  9. Why ? by Anonymous Coward · · Score: 1

    Because they do not suck US cock ?

    Apparently their cyber capabilities are top class. It was reported they broke into a rather central system of the south korean defence ministry.

    All we hear from South Korea is super crappy IT security. I guess they drink too much Coke and eat too much burgers with dangerous fats.

  10. HORRIBBBBLEEE !! by Anonymous Coward · · Score: -1

    Probably it was a Old White Man, not a young brown Mohammedist !

  11. Vulnerabilities are under attack? by llamalad · · Score: 1

    What?

  12. Should rename it... by Anonymous Coward · · Score: 0

    the StraPON router... because using it means your about to get fucked.

    1. Re:Should rename it... by Anonymous Coward · · Score: 0

      ...in the back door!

  13. Botnet herders by fustakrakich · · Score: 1

    Oh give me LAN, lots of LAN...

    --
    “He’s not deformed, he’s just drunk!”
  14. Comment removed by account_deleted · · Score: 2

    Comment removed based on user account deletion

  15. Affects Mexic, Kazakhstan, and Vietnam by Anonymous Coward · · Score: 0

    As long as it isn't Comcast, CenturyLink, or Cox we're all good here in the U.S. Um, to everyone affected, have fun!