Amazing exposure Netcore routers exist back door, anyone can be a remote access-vulnerability warning-the black bar safety net

2014-08-28T00:00:00
ID MYHACK58:62201452969
Type myhack58
Reporter 佚名
Modified 2014-08-28T00:00:00

Description

The Trend Micro researchers said yesterday at the official website shows, the Chinese manufacturers produce a series of routers contain a severe vulnerability, the hacker through the loopholes in monitoring user's Internet traffic. Router in China the Brand Name Netcore in foreign countries the Brand Name Netis is.

! Scared aeration Netcore router presence of a backdoor anyone can remote access

The researchers wrote in an article, the Netcore series router presence of a backdoor, into the back door password is“hard encryption”(hardcoded)is written to the firmware of the device, and all passwords seem to be all the same. An attacker can easily use this password to log in to the router, and the user cannot change or disable this Backdoor.

The Brand of the router open UDP Port 5 3 4 1 3, the Trend Micro online scans this Port to find more than 2 0 0 million IP addresses, meaning that may contain this vulnerability the device number. These devices the vast majority in China, including but not limited to, South Korea, Taiwan, Israel and the United States.

! Scared aeration Netcore router presence of a backdoor anyone can remote access

Through this Backdoor, an attacker can upload or download files to the device, but also the implementation of“middleman”attacks. Meanwhile, Trend Micro also in the router find one is not an encrypted file, the file is the router Web Management User name and password. The attacker can be from the router to download the file.

! Scared aeration Netcore router presence of a backdoor anyone can remote access

Trend Micro has been notified is located in Shenzhen, China producers, but did not get a response.