Thu 17 Jan 2008
Security Vulnerability: Home Routers with uPnP enabled at risk
Posted by azhad under Computers , Internet[4] Comments
A new security vulnerability has been found affecting mainly home routers with uPnP enabled. It was discovered on 12th January 2008.
Most home routers have uPnP enabled by default. They also come with the default IP addresses which are usually one of the following: 192.168.0.1, 192.168.0.254, 192.168.1.1, 192.168.1.254. The router can be affected by visiting a website with a Shockwave Flash file designed to change router settings.
The Simple Solution:
* Turn off uPnP in your router *
This won’t affect normal use like browsing. Those who use P2P applications may have to set the port forward manually.
Please read this FAQ for more information.
January 17th, 2008 at 8:01 am
wow…dats concerning for those who care abt security…but the truth is most of the routers out there have its default passes and settings…some with no encryption at all while the majority is on WEP …
January 17th, 2008 at 5:39 pm
@Ty
Well, my article was aimed at those who were interested in security.
I am talking about the default setting on most routers here. It so happens that most routers have uPnP enabled by default thereby making these routers vulnerable.
More info in this article: Most home routers “vulnerable to remote take-over”
February 14th, 2008 at 10:53 pm
new look huh..nice )~
March 28th, 2008 at 1:42 am
thanks mate…
i do get about 54 KB/s when i am using torrents..
it is the ports which is being blocked which inturn doest allow logging into msn
thanks for the visit.
sorry about my comment box.. i customised the template too much .. will have to fix it soon .