Optical fiber; pay attention to routers

At least 28 backdoors and many other vulnerabilities were discovered in the firmware of the popular FTTH ONT router, which is widely deployed throughout South America and Southeast Asia.

FTTH ONT stands for Fiber-to-the-Home (Fiber-to-the-Home Optical Network Terminal). These are special devices placed at the end of the fiber optic cables. Their role is to convert the optical signals sent through the optical fibers to standard Ethernet or WiFi connections.

FTTH ONTs are usually installed in apartment buildings or inside homes or businesses of their choice gigabit type.

In a report published last week, ο ερευνητής ασφαλείας Pierre Kim ανέφερε ότι εντόπισε πάρα πολλά κενά ασφαλείας με τα FiberHome HG6245D και FiberHome RP2602, δύο μοντέλα δρομολογητών FTTH ONT που αναπτύχθηκαν από την κινεζική εταιρεία FiberHome Networks.

The report describes both the positive and the negative issues with both router models and their firmware.

Για παράδειγμα, στα θετικά ζητήματα είναι ότι και οι δύο συσκευές δεν εκθέτουν τον πίνακα διαχείρισης μέσω κάποιας εξωτερικής διεπαφής IPv4, καθιστώντας αδύνατη την επίθεση εναντίον του πίνακα ιστού μέσω του Διαδικτύου. Επιπλέον, η δυνατότητα διαχείρισης Telnet, η οποία συχνά χρησιμοποιείται για κατάχρηση από τα , is disabled by default.

However, Kim says that FiberHome engineers apparently failed to activate, as the device firewall is only active on the IPv4 interface and not on IPv6, allowing direct access to all of the router's internal services, as long as one knows the IPv6 address. .

Kim described a long list of backdoors and vulnerabilities he discovered in the device, which he claims could be used by intruders to take over ISP infrastructure.

See the list of vulnerabilities

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by giorgos

George still wonders what he's doing here ...

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).