Bugtraq mailing list archives
Re: several vulnerabilities present in Belkin wireless routers
From: Steve Kemp <steve () steve org uk>
Date: Fri, 15 Jul 2005 16:37:10 +0100
On Fri, Jul 15, 2005 at 08:14:14AM -0000, m123303 () securityfocus com wrote:
The first problem is the existance of a default telnet backdoor running on the usual 23/tcp port. From my experience, telnet interfaces are NOT enabled by default in wireless routers but rather, they usually need to be enabled from their administrative web interfaces manually: <Start of output> Starting nmap 3.75 ( http://www.insecure.org/nmap/ ) at 2005-06-06 18:34 BST Initiating SYN Stealth Scan against BelkinModem.Belkin (192.168.2.1)
The obvious question to ask here, is "Can the telnet service be connected to from the WAN side?". All the later content you present, whilst interesting, is of less value if the attacker must be on the LAN side of the router. Steve -- # Debian System Administration www.debian-administration.org/
Current thread:
- several vulnerabilities present in Belkin wireless routers [at] (Jul 15)
- Re: several vulnerabilities present in Belkin wireless routers Steve Kemp (Jul 15)
- Re: several vulnerabilities present in Belkin wireless routers Ian Clelland (Jul 16)
- Re: several vulnerabilities present in Belkin wireless routers nicolas.ruff () gmail com (Jul 16)
- Re: several vulnerabilities present in Belkin wireless routers E. Kellinis (Jul 28)
- Re: several vulnerabilities present in Belkin wireless routers E. Kellinis (Jul 28)
- <Possible follow-ups>
- Re: several vulnerabilities present in Belkin wireless routers ian . latter (Jul 18)
- Re: Re: several vulnerabilities present in Belkin wireless routers steven . salaets (Jul 20)
- Re: several vulnerabilities present in Belkin wireless routers Roman Daszczyszak (Jul 22)
- Re: several vulnerabilities present in Belkin wireless routers Steve Kemp (Jul 15)