Sign in to follow this  
Followers 0
SUB-S0NIX

Router Back Doors

4 posts in this topic

Yesterday I was updating my NetGear router with some new firmware upgrades provided by NetGear. After I was done installing the updates I got to thinking about back doors and the possibilities of installing one on a router and if some one else has already done such a thing.

Most routers already have a remote management feature that can be used over the internet to audit or control a router remotely but if a victim is smart enough they could hardware reflash their router and set a new admin account.

So I took my quest for knowledge to google and found that many manufactuers already have backdoors coded into the firmware they use with their routers. Basically these are accounts that have the same access as the admin but they are hidden accounts that I guess are used by the manufactuers at factories or some one maliciously coded a backdoor into the firmware and hoped that no one would find out!

Google: http://www.google.com/search?hl=en&lr=&q=r...e%2Bback%2Bdoor

I brang this up to see how every one else thinks and feels about this topic and if anyone has ever expierenced or used a backdoor to gain access to a router, and if any one has seen installable code that could create such a backdoor?

Edited by SUB-S0NIX
0

Share this post


Link to post
Share on other sites

the only thing that comes to mind is the ASP explot in some routers. I forget what brand it was. you'll have to google for more info on it.

0

Share this post


Link to post
Share on other sites

There was a serious hole in Netgear's WG602 not long ago. Check this post to FD out. I see a bunch of X-Micro flaws in the search string results in your link, but out of curiousity, is this (NetGear flaw) what got you thinking about backdoors? http://archives.neohapsis.com/archives/ful...04-06/0049.html

There is a patch for V1's now, though as always, many who set a router up and just left it there have no idea I bet to this day that the gaping hole is there on their network.

EDIT: After looking around some it seems the AG-621 may be vulnerable too. Same OEM vendor, same phone number. Anyone reading this who has that router, give it a try and see what happens and let us know. http://www.178idea.com/spec/zcom/Spec_Sheet_AG-621.pdf

Edited by RightCoast
0

Share this post


Link to post
Share on other sites
There was a serious hole in Netgear's WG602 not long ago. Check this post to FD out. I see a bunch of X-Micro flaws in the search string results in your link, but out of curiousity, is this (NetGear flaw) what got you thinking about backdoors? http://archives.neohapsis.com/archives/ful...04-06/0049.html

There is a patch for V1's now, though as always, many who set a router up and just left it there have no idea I bet to this day that the gaping hole is there on their network.

EDIT: After looking around some it seems the AG-621 may be vulnerable too. Same OEM vendor, same phone number. Anyone reading this who has that router, give it a try and see what happens and let us know. http://www.178idea.com/spec/zcom/Spec_Sheet_AG-621.pdf

I have the netgear wireless access point that had that back door, I remember updating the firmware and all it did was change the password to a different phone number lol. I'm not sure if they ever made firmware without a back door, but I remember seeing a site that showed you how to mod the firmware to remove the backdoor and then install the modified firmware on the router/access point. it was a while ago though.

0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0