Kitz Forum

Announcements => News Articles => Topic started by: kitz on December 19, 2014, 09:04:03 PM

Title: Misfortune Cookie
Post by: kitz on December 19, 2014, 09:04:03 PM

Someone passed me on this link today, which is worth a mention as the news seems to be quite full of it today.

Quote

Infosec biz Check Point claims it has discovered a critical software vulnerability that allows hackers to hijack home and small business broadband routers across the web.

The commandeered boxes could be used to launch attacks on PCs and gadgets within their local networks.

More than 12 million low-end SOHO routers worldwide are affected by the bug, dubbed Misfortune Cookie, we're told. At least 200 different models of devices from various manufacturers and brands are vulnerable, it's claimed, including kit from D-Link, Edimax, Huawei, TP-Link, ZTE, and ZyXEL.

http://www.theregister.co.uk/2014/12/18/misfortune_cookie/

Ive tried having a quick search around to see what is affected and it would appear that this bug was supposedly introduced in 2002 and the fix made available in 2005.  However there may be many modem routers which are still vulnerable.

Theres a list here of suspected vulnerable routers
http://mis.fortunecook.ie/misfortune-cookie-suspected-vulnerable.pdf

From what I can see, it mostly seems to affect older models.

Title: Re: Misfortune Cookie
Post by: tickmike on December 19, 2014, 09:45:50 PM

From there list 'EchoLife Home Gateway Huawei'         :o

Title: Re: Misfortune Cookie
Post by: kitz on December 19, 2014, 10:01:41 PM

Im not certain, but based on the other listings I took that to be the EchoLife Home Gateway HG520s -  ie as was used by Talktalk.   
There's also a couple of other old TT routers listed such as the SmartAX range