A new security vulnerability has been found affecting mainly home routers with uPnP enabled. It was discovered on 12th January 2008.
Most home routers have uPnP enabled by default. They also come with the default IP addresses which are usually one of the following: 192.168.0.1, 192.168.0.254, 192.168.1.1, 192.168.1.254. The router can be affected by visiting a website with a Shockwave Flash file designed to change router settings.
The Simple Solution:
* Turn off uPnP in your router *
This won’t affect normal use like browsing. Those who use P2P applications may have to set the port forward manually.