Your forum username:
Do you already have an account?
Forgot your password?
  • Log in or Sign up


    Welcome to Sky User - The Unofficial Support Forum for everything Sky! - Proudly helping over 65k members.


    Advertisement

    Page 1 of 3 123 LastLast
    Results 1 to 10 of 23

    Massive UPnP Security Issue - Sky router affected?

    This is a discussion on Massive UPnP Security Issue - Sky router affected? within the Sky Router forums, part of the Sky Broadband help category; Security firm Rapid7 recently revealed that millions of routers and other devices around the world are at risk due to ...

    1. #1
      Tezcatlipoca's Avatar
      Tezcatlipoca is offline Sky User Moderator
      Exchange: Cambridge (EACAM)
      Broadband ISP: Sky Fibre Unlimited Pro
      Router: Sky Hub SR101
      Sky TV: Sky+HD box
      Join Date
      Feb 2007
      Location
      Cambridge
      Posts
      855
      Thanks
      13
      Thanked 7 Times in 7 Posts

      Massive UPnP Security Issue - Sky router affected?

      Security firm Rapid7 recently revealed that millions of routers and other devices around the world are at risk due to security flaws in UPnP (Universal Plug and Play).

      https://community.rapid7.com/communi...plug-dont-play

      There's a free scanner (Windows only) for testing whether your devices are at risk:

      ScanNow for Universal Plug and Play (UPnP) | Rapid7



      Recommendations are to block the UPnP ports on your router, and turn off UPnP on your router and any other device:

      Disable This Buggy Feature On Your Router Now To Avoid A Serious Set Of Security Vulnerabilities - Forbes

      How to fix the UPnP security holes | ZDNet


      Does anyone know if the various Sky routers are vulnerable to this? I've got the Sagem Wireless N router (can't remember the name), but can't test it as the tool is Windows only (and despite the links saying that Mac users can instead use Metasploit I can't see a Mac version of that, just Windows or Linux).


    2. Advertisement
    3. #2
      NewsreadeR's Avatar
      NewsreadeR is offline Site Founder
      Exchange: Marshalls Cross
      Broadband ISP: Sky Broadband Unlimited
      Router: Sagem F@ST 2504n
      Sky TV: Sky+HD box
      Join Date
      Aug 2006
      Location
      St Helens
      Posts
      22,227
      Thanks
      108
      Thanked 390 Times in 314 Posts
      Blog Entries
      48

      Re: Massive UPnP Security Issue - Sky router affected?

      I have the 2504n and the end results are

      Date and Time IP Range Scanned
      01/31/13 20:11:59 192.168.0.1 to 192.168.0.254
      Exploitable Identified
      0 0
      ~ Never, ever, argue with an idiot. They'll drag you down to their level and beat you with experience ~

    4. The Following User Says Thank You to NewsreadeR For This Useful Post:

      Tezcatlipoca (31-01-13)

    5. #3
      itype's Avatar
      itype is offline Sky User Member
      Exchange: Basingstoke, THBZ
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR101
      Sky TV: Sky+HD box
      Join Date
      Oct 2007
      Location
      Hampshire
      Posts
      317
      Thanks
      12
      Thanked 3 Times in 2 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      I don't have a Windows computer but I would assume that if the 2504n is secure that the SR101 would also be secure.

    6. #4
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,256
      Thanks
      65
      Thanked 1,655 Times in 1,616 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      I am not too sure how serious this actually is. Using Universal Plug and Play Check by Rapid7 the alternate to ScanNow, which checks the vulnerability from the internet, mine reports as Secure. Running ScanNow from within my network it reports the router IP as being exploitable. To me this means that the router is quite safe from the internet, but is vulnerable from with the network. Surely every router is vulnerable to some extent from within its own network, but to do any harm an attacker would first have to gain access to the network. Maybe I am looking at this in the wrong way.

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      https://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





    7. The Following User Says Thank You to Isitme For This Useful Post:

      Tezcatlipoca (31-01-13)

    8. #5
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,256
      Thanks
      65
      Thanked 1,655 Times in 1,616 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      Quote Originally Posted by itype View Post
      I don't have a Windows computer but I would assume that if the 2504n is secure that the SR101 would also be secure.
      There is also a tool available for Macs, read this page - https://community.rapid7.com/community/infosec/blog

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      https://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





    9. #6
      Scubbie's Avatar
      Scubbie is offline Sky User Moderator
      Exchange: 02392
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Q Hub ER110
      Sky TV: Sky+HD box
      Join Date
      Mar 2010
      Location
      Near Portsmouth
      Posts
      28,202
      Thanks
      844
      Thanked 2,223 Times in 2,092 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      Opening any port on a router, simply just to navigate the Internet will expose you to risks.

      As fast as one flaw is fixed, another will be found. Anyway, using the a beta firmware for the Sky Hub SR101, I gained the following results:

      Date and Time IP Range Scanned
      01/31/13 21:14:51 192.168.0.1 to 192.168.0.254
      Exploitable Identified
      0 5

      I trust this is alright? If someone wishes to confirm the same on the current public release on the Sky Hub SR101, please do so.

      Sky Fibre Unlimited Pro: Connected at 80,000 kbps / 20,000 kbps
      Previous ADSL2+ Speed 19999 kbps 1153 kbps, Line Attenuation 17.5 db 6.9 db, Noise Margin 7.5 dB 8.7 dB
      Speedtest: 17.15MB/s 0.97Mb/s Ping 31 ms

    10. The Following User Says Thank You to Scubbie For This Useful Post:

      Tezcatlipoca (31-01-13)

    11. #7
      Tezcatlipoca's Avatar
      Tezcatlipoca is offline Sky User Moderator
      Exchange: Cambridge (EACAM)
      Broadband ISP: Sky Fibre Unlimited Pro
      Router: Sky Hub SR101
      Sky TV: Sky+HD box
      Join Date
      Feb 2007
      Location
      Cambridge
      Posts
      855
      Thanks
      13
      Thanked 7 Times in 7 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      Quote Originally Posted by NewsreadeR View Post
      I have the 2504n and the end results are

      Date and Time IP Range Scanned
      01/31/13 20:11:59 192.168.0.1 to 192.168.0.254
      Exploitable Identified
      0 0

      Cheers


      Quote Originally Posted by Isitme View Post
      There is also a tool available for Macs, read this page - https://community.rapid7.com/community/infosec/blog
      Except...There isn't. At least, not in any kind of obvious location. Following the Metasploit link in that article takes you to a page that only makes mention of versions for Windows & Linux, no mention of OS X. Still, at least there's the web-based tester for the external side.

      Quote Originally Posted by Tezcatlipoca View Post
      (and despite the links saying that Mac users can instead use Metasploit I can't see a Mac version of that, just Windows or Linux).

    12. #8
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,256
      Thanks
      65
      Thanked 1,655 Times in 1,616 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      Except...There isn't. At least, not in any kind of obvious location. Following the Metasploit link in that article takes you to a page that only makes mention of versions for Windows & Linux, no mention of OS X. Still, at least there's the web-based tester for the external side.
      I don't know anything about Macs but that may be because it is preinstalled on Mac OSs, at least this article seems to suggest that-
      https://community.rapid7.com/docs/DOC-1037

      I get the impression this does the same sort of job .Net does on Windows, but as I said my knowledge of Macs is nil.

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      https://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





    13. #9
      speedyrite's Avatar
      speedyrite is offline Sky User Member
      Exchange: MYHGT
      Broadband ISP: NOW Broadband
      Router: NOW TV Hub Two
      Sky TV: NOW TV
      Join Date
      Sep 2006
      Posts
      2,368
      Thanks
      389
      Thanked 160 Times in 154 Posts
      Blog Entries
      1
      Is exposure to this vulnerability reduced or eliminated by setting "Respond to Ping on WAN port" to OFF?
      ++ speedyrite ... powered by NOW Broadband from June 2018 ++
      (previously powered by Sky Broadband from July 2007)

    14. #10
      Isitme's Avatar
      Isitme is offline Sky User Moderator
      Exchange: Bannockburn
      Broadband ISP: Sky Fibre Unlimited
      Router: Sky Hub SR102
      Sky TV: Sky+ HD
      Join Date
      Dec 2006
      Location
      Central Scotland
      Posts
      34,256
      Thanks
      65
      Thanked 1,655 Times in 1,616 Posts

      Re: Massive UPnP Security Issue - Sky router affected?

      No, it appears it can only be completely eliminated by turning off UPnP.

      TomD


      Please note the views and recommendations in my posts are my own and in no way reflect the views of SkyUser.


      Useful Utilites

      https://www.nirsoft.net/utils/wifi_information_view.html/ TCPOptimiser /Test Socket

      Note - When downloading always select the Custom install or you will end up with stuff you don't want.





     

     
    Page 1 of 3 123 LastLast

    Tags for this Thread

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •  
    SkyUser - Copyright © 2006-2020. SatDish and NewsreadeR | SkyUser is in no way affiliated with Sky Broadband / BSkyB
    RIPA NOTICE: NO CONSENT IS GIVEN FOR INTERCEPTION OF PAGE TRANSMISSION