Optical fiber; pay attention to routers

At least 28 backdoors and many other vulnerabilities were discovered in the firmware of the popular FTTH ONT router, which is widely deployed throughout South America and Southeast Asia.

Το FTTH ONT σημαίνει τερματικό οπτικού δικτύου Fiber-to-the-Home (Fiber-to-the-Home Optical Network Terminal). Πρόκειται για ειδικές συσκευές τοποθετημένες στο τέλος των καλωδίων οπτικών ινών. Ο ρόλος τους είναι να μετατρέψουν τα οπτικά σήματα που αποστέλλονται μέσω των οπτικών ινών σε κλασικές συνδέσεις or WiFi.

FTTH ONTs are usually installed in apartment buildings or in homes or businesses that choose gigabit subscriptions.

Σε μια έκθεση που δημοσιεύθηκε την περασμένη εβδομάδα, ο ερευνητής ασφαλείας Kim reported that he found too many security holes with FiberHome HG6245D and FiberHome RP2602, two models of FTTH ONT routers developed by Chinese company FiberHome Networks.

The report describes both the positive and the negative issues with both router models and their firmware.

For example, on the plus side, both devices don't expose the dashboard via some external one ς IPv4, καθιστώντας αδύνατη την επίθεση εναντίον του πίνακα ιστού μέσω του Διαδικτύου. Επιπλέον, η δυνατότητα διαχείρισης Telnet, η οποία συχνά χρησιμοποιείται για κατάχρηση από τα , is disabled by default.

However, Kim says that FiberHome engineers apparently failed to activate, as the device firewall is only active on the IPv4 interface and not on IPv6, allowing direct access to all of the router's internal services, as long as one knows the IPv6 address. .

Kim described a long list of and vulnerabilities it discovered in the device, which it claims attackers could use to take over the ISP's infrastructure.

See the list of vulnerabilities

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).