[ale] Linksys 'routers', SNMP issues (fwd)
John Mills
jmmills at telocity.com
Mon Jan 7 10:28:14 EST 2002
Chris -
How did you query the unit? What is you master agent and what tools did
you use? If I set my main platform as the snmptrap host that doesn't
sound like a bad idea, but I've had only a brush with SNMP and that used
prebuilt MsWin tools.
On Mon, 7 Jan 2002, Chris Ricker wrote:
> Since a lot of people on this list seem to think these sorts of toys are a
> good idea....
>
> ---------- Forwarded message ----------
> Date: Sun, 6 Jan 2002 06:55:17 -0600
> From: Matthew S. Hallacy <poptix at techmonkeys.org>
> To: bugtraq at securityfocus.com
> Subject: Linksys 'routers', SNMP issues
>
> Howdy.
>
> LinkSys DSL 'routers' have some serious information leakage, and potention DDoS
> usage. The following models have been confirmed as having this problem:
> BEFN2PS4 (EtherFast Cable/DSL Router & Voice with 4-Port Switch)
> BEFSR81 (EtherFast Cable/DSL Router with 8-Port Switch)
>
> Querying these devices with the default community of 'public' causes them to set
> the address that queried as their snmptrap host, dumping traffic such as the
> following to that address:
>
> Enterprise Specific Trap (1) Uptime: 2 days, 19:00:23.36, enterprises.3955.1.1.0 = "@out 192.168.1.200 ==> 24.254.60.13[110]."
> Enterprise Specific Trap (1) Uptime: 2 days, 19:00:23.36, enterprises.3955.1.1.0 = "@out 192.168.1.200 ==> 216.120.8.23[5632]."
...
Regards -
John Mills
---
This message has been sent through the ALE general discussion list.
See http://www.ale.org/mailing-lists.shtml for more info. Problems should be
sent to listmaster at ale dot org.
More information about the Ale
mailing list