600k+ Arris cable modems have backdoors installed


Advanced search

Message boards : Cafe SETI : 600k+ Arris cable modems have backdoors installed
Message board moderation

To post messages, you must log in.

AuthorMessage
Profile BladeD
Avatar

Send message
Joined: 9 Aug 11
Posts: 13320
Credit: 1,603,919
RAC: 2
United States
Message 1743790 - Posted: 21 Nov 2015, 6:15:03 UTC

600k+ Arris cable modems have backdoors installed

While researching the subject, Rodrigues had found a previously undisclosed backdoor on Arris cable modems. But when extending the search through Shodan, Rodrigues claims that more than 600,000 externally accessible hosts are affected by the backdoor. The initial backdoor-admin password was disclosed as far back as 2009 and is based on a known seed.

The backdoor was found in the hidden administrative shell that can control the cable modems. The backdoor account can be used to remotely allow Telnet and SSH through the hidden HTTP administrative interface, or through custom SNMP MIBs.
ID: 1743790 · Report as offensive

Message boards : Cafe SETI : 600k+ Arris cable modems have backdoors installed


 
©2024 University of California
 
SETI@home and Astropulse are funded by grants from the National Science Foundation, NASA, and donations from SETI@home volunteers. AstroPulse is funded in part by the NSF through grant AST-0307956.