Malfomed URL can open ports in your network!

Lyecdevf · Post by **Lyecdevf** » 11 Feb 2008, 04:00

The folks at GNU Citizen have been researching UPNP Vulnerabilities in home routers, and have produced a flash swf file capable of opening open ports into your network simply by visiting an unfortunate URL. Looks like Firefox & Safari users are safe for now.

link below has the full article and links to actually test your own network security. check it out.

http://www.gnucitizen.org/blog/hacking-the-interwebs

jasonxxx102 · Post by **jasonxxx102** » 11 Feb 2008, 08:33

Thats interesting... but of course it targets internet explorer basically every1(that isnt smart) uses it... is opera safe?

n3rd · Post by **n3rd** » 11 Feb 2008, 09:26

pretty much, I wont know if it is supported by all the websites though.

Lyec question;

Iexplorer.exe is also based upon explorer.exe right,

so wouldnt that be like a bridge for hackers just to fuck you over?.

Lyecdevf · Post by **Lyecdevf** » 11 Feb 2008, 10:03

n3rd wrote: Lyec question;

Iexplorer.exe is also based upon explorer.exe right,

so wouldnt that be like a bridge for hackers just to fuck you over?.

Yeah, once they open ports on your router the next step can be your computer. Ha, that even rhymes.

Post by **DNR** » 11 Feb 2008, 10:20

Read through the comments.
It uses flash 9 and earlier and can affect other browsers, any browser that can run flash.

Not all routers are affected. And the threat to PCs is minimal or blocked as many PCs have host-based security systems/firewalls. You could redirect users of the network to bad DNS such as a popular email login or bank login. Victims would not know if they are at the actual website or the redirected malicious site.

DNR

suck-o.com

Malfomed URL can open ports in your network!

Malfomed URL can open ports in your network!

RTFM