Zero Day in Huawei routers and modems, ZTE and others.

Russian Security Investigator Timur Yunusov has discovered several Zero Day vulnerabilities in 3G and 4G routers and modems using Huawei, ZTE, Gemtek and Quanta devices. Vulnerabilities allow attackers to violate devices by simple SMS but also through HTTP connections.Zero Day hacker

The survey and the Zero Day were first presented in detail in December to hackers who attended the Nullcon conference in Goa and unveiled un-patched security gaps from eight of the above companies.

Timur Yunusov, a consultant for Positive Technologies, discovered that Gemtek's Quanta and ZTE modems and routers are exposed to Shodan.

"All models contained critical vulnerabilities," says Yunusov. "Virtually all vulnerabilities could be exploited from afar."

Four of the eight modems and routers contain cross-site scripting vulnerabilities that allow for system infection, SMS tampering, and victim location.

zero day

"Since we can infiltrate a modem… we can also infect the computer to which the device is connected, which provides us with many ways to intercept computer data."

Let's say that Yunusov and his team showed us last year how an SMS could be used to get the attacker access to rail systems and derail trains.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.098 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).