Reply to post: Re: The world needs to be reformatted.

Netgear router flaws exploitable with authentication ... like the default creds on Netgear's website

Anonymous Coward
Anonymous Coward

Re: The world needs to be reformatted.

Just in case -

According to a blog post by security researcher Joseph Hutchins that first went live in August, upwards of 138,000 AT&T wireless routers may have a critical security vulnerability that could leave many of its customers open to an attack.

Five flaws altogether were discovered in the company’s “Arris”-branded routers, though even more are said to potentially affect other OEM AT&T U-verse modems regardless of make or model. The attack is able to bypass any security measures that a user may have put in place, as well as the internal firewall through a publicly-available set of credentials.

Once the hacker is in range of the router, he can either use the credential crack or a brute force of the half-completed MAC address to get in. The latter bug may have been a result of AT&T’s staff support methodology, which leaves a channel open that technicians can use to remotely troubleshoot internet issues without having to send someone out to the address physically.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2022