{"id":863,"date":"2013-01-31T10:58:21","date_gmt":"2013-01-31T15:58:21","guid":{"rendered":"http:\/\/blog.nccomputertech.com\/?p=863"},"modified":"2013-01-31T10:58:21","modified_gmt":"2013-01-31T15:58:21","slug":"millions-of-pcs-exposed-through-network-bugs-security-researchers-find","status":"publish","type":"post","link":"https:\/\/nccomputertech.com\/techtalk\/2013\/01\/31\/millions-of-pcs-exposed-through-network-bugs-security-researchers-find\/","title":{"rendered":"Millions of PCs exposed through network bugs, security researchers find"},"content":{"rendered":"<p>Common bugs in networking systems are placing PCs, printers and storage devices at risk, according to security researchers.<br \/>\nAccording to the security team at Rapid7, technology used worldwide in both routers and standard networking equipment is making it possible for hackers to potentially infiltrate approximately 40 to 50 million devices worldwide.<br \/>\nThe vulnerability lies in the standard known as Universal Plug and Play (UPnP). This standard set of networking protocols allow devices, such as PCs, printers and Wi-Fi access points to communicate and discover each other&#8217;s presence. After discovery, devices can be connected through a network in order to share files, printing capability and the Internet.<br \/>\nIn a white paper released today, researchers from the security software maker say that while UPnP might make network setup cheaper and more efficient, it harbours a severe security risk.<br \/>\nThe paper focuses on programming flaws in common UPnP discovery protocol (SSDP) implementations which can be exploited to crash the service and execute arbitrary code, the exposure of the UPnP control interface (SOAP) on private networks, and programming flaws in both UPnP HTTP and SOAP overall.<br \/>\nOver 80 million unique IPs were identified that responded to UPnP discovery requests from the internet due to the &#8220;misconfiguration&#8221; of the UPnP SSDP discovery service across thousands of products. Over 73 percent of all UPnP instances discovered through SSDP were derived from only four software development kits.<br \/>\nIn addition, the UPnP SOAP service was found to provide access to device functions that should not be allowed from untrusted networks &#8212; such as opening holes in a firewall.<br \/>\nRapid7 also says that the two most commonly used UPnP software libraries both contained remotely exploitable vulnerabilities. For example, in the case of the Portable UPnP SDK, &#8220;over 23 million IPs are vulnerable to remote code execution through a single UDP packet.&#8221; A patch has been released, but it will take a long time before this patch is included in vendor products, according to the firm.<br \/>\nThe paper states:<\/p>\n<p style=\"text-align:center;\"><a href=\"http:\/\/www.zdnet.com\/millions-of-pcs-exposed-through-network-bugs-security-researchers-find-7000010478\/\"><img data-recalc-dims=\"1\" height=\"714\" width=\"620\" decoding=\"async\" alt=\"\" src=\"http:\/\/nccomputertech.files.wordpress.com\/2013\/01\/statsrapid7-620x714.png?resize=620%2C714\" \/><\/a><\/p>\n<p>&#8220;In most cases, network equipment that is &#8220;no longer shipping&#8221; will not be updated at all, exposing these users to remote compromise until UPnP is disabled or the product is swapped for something new. The flaws identified in the MiniUPnP software were fixed over two years ago, yet over 330 products are still using older versions.&#8221;<br \/>\nThe team&#8217;s findings are below:<br \/>\nrapid7 white paper networking security vulnerability flaw<br \/>\nThe researchers say that over 1,500 vendors and 6,900 products were identified and vulnerable to at least one of these security flaws. Vendors with vulnerable products include Belkin, Linksys and Netgear. These flaws, unless disabled or fixed, could allow hackers access to confidential business files, passwords, or grant them control over devices including printers and webcams remotely.<br \/>\nChris Wysopal, chief technology officer of security software firm Veracode, told Reuters that the publication of these findings would bring widespread attention to UPnP, commenting:<br \/>\n&#8220;This definitely falls into the scary category. There is going to be a lot more research on this. And the follow-on research could be a lot scarier.&#8221;<br \/>\nThe firm suggests that in order to combat the possible threat, end users, firms and ISPs should identify and disable any UPnP endpoints within their systems and networks, and be aware that many devices come with UPnP enabled by default.<br \/>\n<em>Update &#8211; From NCCT: You can go to <a href=\"https:\/\/www.grc.com\" target=\"_blank\">GRC.com<\/a> and select their Shields UP! service and run GRC&#8217;s\u00a0 instant UPnP exposure test. This will tell you if your router has a <span style=\"color:#000070;font-family:Verdana, Arial, Helvetica, Sans-Serif, MS Sans Serif;\"><span style=\"color:#404040;\">publicly exposed and listening UPnP SSDP service. <\/span><\/span><\/em><br \/>\nvia <a href=\"http:\/\/www.zdnet.com\/millions-of-pcs-exposed-through-network-bugs-security-researchers-find-7000010478\/\" target=\"_blank\">Millions of PCs exposed through network bugs, security researchers find | ZDNet<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Common bugs in networking systems are placing PCs, printers and storage devices at risk, according to security researchers. According to [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"_jetpack_newsletter_access":"","_jetpack_dont_email_post_to_subs":false,"_jetpack_newsletter_tier_id":0,"_jetpack_memberships_contains_paywalled_content":false,"_jetpack_feature_clip_id":0,"_jetpack_memberships_contains_paid_content":false,"footnotes":"","jetpack_publicize_message":"","jetpack_publicize_feature_enabled":true,"jetpack_social_post_already_shared":false,"jetpack_social_options":{"image_generator_settings":{"template":"highway","default_image_id":0,"font":"","enabled":false},"version":2},"jetpack_post_was_ever_published":false},"categories":[6,7],"tags":[341,1137,1178],"class_list":["post-863","post","type-post","status-publish","format-standard","hentry","category-networking","category-security","tag-exploit","tag-upnp","tag-vulnerability"],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"jetpack_shortlink":"https:\/\/wp.me\/papNkV-dV","jetpack-related-posts":[{"id":3067,"url":"https:\/\/nccomputertech.com\/techtalk\/2013\/07\/31\/some-home-automation-systems-are-rife-with-holes-security-experts-say\/","url_meta":{"origin":863,"position":0},"title":"Some home automation systems are rife with holes, security experts say","author":"NCCT","date":"July 31, 2013","format":false,"excerpt":"A variety of network-controlled home automation devices lack basic security controls, making it possible for attackers to access their sensitive functions, often from the Internet, according to researchers from security firm Trustwave. Some of these devices are used to control door locks, surveillance cameras, alarm systems, lights, and other sensitive\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/images.techhive.com\/images\/article\/2013\/07\/veralite-copy-100048275-large.jpg?resize=350%2C200","width":350,"height":200,"srcset":"https:\/\/i0.wp.com\/images.techhive.com\/images\/article\/2013\/07\/veralite-copy-100048275-large.jpg?resize=350%2C200 1x, https:\/\/i0.wp.com\/images.techhive.com\/images\/article\/2013\/07\/veralite-copy-100048275-large.jpg?resize=525%2C300 1.5x"},"classes":[]},{"id":6184,"url":"https:\/\/nccomputertech.com\/techtalk\/2014\/08\/13\/hacker-coalition-sets-out-to-improve-critical-device-security-challenges-car-makers\/","url_meta":{"origin":863,"position":1},"title":"Hacker coalition sets out to improve critical device security, challenges car makers","author":"NCCT","date":"August 13, 2014","format":false,"excerpt":"A collective of security researchers issued a letter Friday from the DefCon hacker conference in Las Vegas urging the automotive industry to adopt five principles for building safer computer systems in vehicles. The group is operating under the name I Am the Cavalary and includes researchers and others concerned about\u2026","rel":"","context":"In &quot;Networking&quot;","block_context":{"text":"Networking","link":"https:\/\/nccomputertech.com\/techtalk\/category\/networking\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":9378,"url":"https:\/\/nccomputertech.com\/techtalk\/2018\/07\/13\/smart-home-security-tips\/","url_meta":{"origin":863,"position":2},"title":"Smart Home Security Tips","author":"NCCT","date":"July 13, 2018","format":false,"excerpt":"https:\/\/youtu.be\/ESqqAf3IGok Megan Morrone and Florence Ion talk to Stacey Higginbotham about tips for securing your smart home. The advantages and disadvantages of running devices on a guest network. Plus, how do you know if your devices are getting regular firmware updates.","rel":"","context":"In &quot;Networking&quot;","block_context":{"text":"Networking","link":"https:\/\/nccomputertech.com\/techtalk\/category\/networking\/"},"img":{"alt_text":"","src":"https:\/\/i0.wp.com\/img.youtube.com\/vi\/ESqqAf3IGok\/0.jpg?resize=350%2C200","width":350,"height":200},"classes":[]},{"id":7112,"url":"https:\/\/nccomputertech.com\/techtalk\/2014\/12\/10\/researchers-say-poodle-can-be-repurposed-to-attack-tls-10-percent-of-the-servers-vulnerable\/","url_meta":{"origin":863,"position":3},"title":"Researchers say Poodle can be repurposed to attack TLS, 10 percent of the servers vulnerable","author":"NCCT","date":"December 10, 2014","format":false,"excerpt":"A couple of months after researchers at Google uncovered POODLE (Padding Oracle On Downgraded Legacy Encryption), a vulnerability in a specific version of the SSL protocol, security firm Qualys has announced that the issue also affects implementations of the TLS protocol. Poodle allows attackers to compromise the secure connection between\u2026","rel":"","context":"In &quot;Networking&quot;","block_context":{"text":"Networking","link":"https:\/\/nccomputertech.com\/techtalk\/category\/networking\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":5750,"url":"https:\/\/nccomputertech.com\/techtalk\/2014\/06\/11\/one-click-test-finds-gameover-zeus-infections-on-pcs\/","url_meta":{"origin":863,"position":4},"title":"One-click test finds Gameover Zeus infections on PCs","author":"NCCT","date":"June 11, 2014","format":false,"excerpt":"Users can test by simply visiting a Web page if their computers have been infected with Gameover Zeus, a sophisticated online banking Trojan that law enforcement officers temporarily disrupted last week. The one-click test was developed by security researchers from antivirus vendor F-Secure and takes advantage of the malware\u2019s aggressive\u2026","rel":"","context":"In &quot;Security&quot;","block_context":{"text":"Security","link":"https:\/\/nccomputertech.com\/techtalk\/category\/security\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]},{"id":8505,"url":"https:\/\/nccomputertech.com\/techtalk\/2015\/07\/29\/dell-begins-shipping-windows-10-machines\/","url_meta":{"origin":863,"position":5},"title":"Dell begins shipping Windows 10 machines","author":"NCCT","date":"July 29, 2015","format":false,"excerpt":"With the official launch of Windows 10 just around the corner, excitement is at its peak among Insiders, fans and tech enthusiasts. After confirmation from Microsoft that customers will indeed be able to purchase PCs with the latest OS pre-installed on launch day, and promising that \"over 2000 distinct Windows\u2026","rel":"","context":"In &quot;Microsoft&quot;","block_context":{"text":"Microsoft","link":"https:\/\/nccomputertech.com\/techtalk\/category\/microsoft\/"},"img":{"alt_text":"","src":"","width":0,"height":0},"classes":[]}],"_links":{"self":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/863","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/comments?post=863"}],"version-history":[{"count":0,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/posts\/863\/revisions"}],"wp:attachment":[{"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/media?parent=863"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/categories?post=863"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nccomputertech.com\/techtalk\/wp-json\/wp\/v2\/tags?post=863"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}