Topic: Possible D-Link issue (Read 1927 times)

Azzaka · « **on:** January 19, 2010, 12:21:23 PM »

Just so as your all aware a vulnerability seems to have cropped up in Dlink routers..

Models affected: DIR-855 (hardware version A2), DIR-655 (versions A1 to A4), and DIR-635 (version B)

Issue: problem lies in D-Link's implementation of Cisco's Home Network Administration Protocol, which allows remote router configuration

More info:
Here:
http://it.slashdot.org/story/10/01/19/0147239/D-Link-Warns-of-Vulnerable-Routers?art_pos=6
here:
http://www.computerworld.com/s/article/9145139/D_Link_issues_fixes_for_router_vulnerabilities?taxonomyId=80
and here:
http://www.sourcesec.com/2010/01/09/d-link-routers-one-hack-to-own-them-all/

Dlink have said however that this will only affect users who have updated the factory default firmware to one downloaded from their website. The discovers of the vulnerability however say this affects all dlinks sold since 2006

roseway · « **Reply #1 on:** January 19, 2010, 01:01:15 PM »

Thanks for the warning Azzaka.