Most Home Routers Vulnerable to Flash UPnP Attack

Become a fan of Slashdot on Facebook

Most Home Routers Vulnerable to Flash UPnP Attack 253

Posted by CmdrTaco on Monday January 14, 2008 @09:55AM from the oh-this-will-go-well dept.

An Anonymous reader noted that some folks at GNU Citizen have been researching UPNP Vulnerabilities in home routers, and have produced a flash swf file capable of opening open ports into your network simply by visiting an unfortunate URL. Looks like Firefox & Safari users are safe for now.

This discussion has been archived. No new comments can be posted.

Most Home Routers Vulnerable to Flash UPnP Attack

Search 253 Comments Log In/Create an Account

Comments Filter:

Open open... (Score:5, Funny)

by ElGanzoLoco ( 642888 ) writes: on Monday January 14, 2008 @10:17AM (#22034046) Homepage

[...] a flash swf file capable of opening open ports into your network [...]

Hold on, now I'm confused: does this attack open open ports, or does it open ports open? Or even worse, does it open open open ports? :D

Share
twitter facebook
Re:Let me be the first... (Score:2, Funny)

by TheCRAIGGERS ( 909877 ) writes: on Monday January 14, 2008 @10:40AM (#22034334)

Firefox is safe anyway, for the time being.

Still, NoFlash... NoScript... soon I'll have to install NoImage and NoCSS. I guess it's time to go back to Gopher.

Parent Share
twitter facebook
Re:Turn off UPNP (Score:5, Funny)

by binaryspiral ( 784263 ) writes: on Monday January 14, 2008 @11:13AM (#22034698)

For most of these people, uPNP is a godsend since it eliminates the need to mess around with portforwarding in the router configuration.

If uPNP is a godsend to those people... they need to get a better God.

Parent Share
twitter facebook
Re:WHERE $money; PUT $mouth (Score:4, Funny)

by bignetbuy ( 1105123 ) writes: <dm@@@area2408...com> on Monday January 14, 2008 @12:56PM (#22036082) Journal

Challenging an anon coward...

Yeah, that'll work.

Parent Share
twitter facebook
Re:Nothing new, really (Score:1, Funny)

by Anonymous Coward writes: on Monday January 14, 2008 @12:59PM (#22036124)

Is their any other grammatical and spelling rules we should no about?

Parent Share
twitter facebook
Re:Nothing new, really (Score:3, Funny)

by mcmonkey ( 96054 ) writes: on Monday January 14, 2008 @02:26PM (#22037298) Homepage

Yup, I have seen people computers infected from msn.com

Isn't that redundant? The GP already stated,
It all hinges on going to a malicious web site.

Parent Share
twitter facebook
Re:Turn off UPNP (Score:4, Funny)

by Cramer ( 69040 ) writes: on Monday January 14, 2008 @05:02PM (#22040436) Homepage

Simple. Buy one of the new Linksys Draft-N routers and put it in 40MHz mode. It'll stomp all over them.

Parent Share
twitter facebook

There may be more comments in this discussion. Without JavaScript enabled, you might want to turn on Classic Discussion System in your preferences instead.

Most Home Routers Vulnerable to Flash UPnP Attack 253

Most Home Routers Vulnerable to Flash UPnP Attack More Login

Most Home Routers Vulnerable to Flash UPnP Attack

Open open... (Score:5, Funny)

Re:Let me be the first... (Score:2, Funny)

Re:Turn off UPNP (Score:5, Funny)

Re:WHERE $money; PUT $mouth (Score:4, Funny)

Re:Nothing new, really (Score:1, Funny)

Re:Nothing new, really (Score:3, Funny)

Re:Turn off UPNP (Score:4, Funny)

Related Links Top of the: day, week, month.

Slashdot Top Deals

Slashdot