[LINK] Expert: Huawei routers are riddled with vulnerabilities
Kim Holburn
kim at holburn.net
Sat Aug 11 12:05:18 AEST 2012
http://news.cnet.com/8301-1009_3-57482813-83/expert-huawei-routers-are-riddled-with-vulnerabilities/
> Expert: Huawei routers are riddled with vulnerabilities
>
> German security researcher says the Chinese government doesn't need to demand back doors on Huawei routers because there are already major holes in their firmware.
>
> by Elinor Mills
> July 30, 2012 5:59 PM PDT Follow @elinormills
>
> Felix Lindner says security holes in Huawei routers could let attackers snoop on peoples' communications.
>
> (Credit: Elinor Mills/CNET)
> LAS VEGAS -- A German security researcher says he has uncovered several security holes in routers made by China-based Huawei that are used by many Internet service providers -- vulnerabilities that could allow attackers to take control of the devices and snoop on peoples' traffic.
>
> Huawei routers are mostly used in Asia, Africa and the Middle East. Because they're cheap, though, they're increasingly turning up in other parts of the world, the German researcher -- Felix Lindner, also known as "FX" -- said in an interview with CNET after his Defcon talk on Sunday.
>
> The problem is due to the use of "1990s-style code" in the firmware of some Huawei VRP routers, he said. (The models are the Huawei AR18 and AR 29 series, IDG News Service reports). With a known exploit, an attacker could get access to the systems, log in as administrator, change the admin passwords and reconfigure the systems, which would allow for interception of all the traffic running through the routers, said Lindner, who heads Berlin-based Recurity Labs.
>
> Asked about reports that Huawei routers have back doors per the Chinese government's request, Lindner said: "They don't need to. You (just) need to have Huawei people running your network or help run your network... If you have so many vulnerabilities, they are the best form of (attack) vector."
.....
> The research is scary for not only the ISPs using the vulnerable routers, but also for millions of their customers who don't realize that their communications could be spied on, said Dan Kaminsky, security expert and chief scientist at DKH.
>
> "It's a big deal for routers to get broken into," especially those made by the fastest growing router manufacturer, he told CNET. "If you can get into a router you can take it over, monitor and alter peoples' traffic. You become a man-in-the-middle" attacker who can spoof legitimate Web sites.
>
> Even systems that rely on encryption aren't safe because many of them have inadequate authentication, which allows attackers to pretend to be any site they want, Kaminsky said.
--
Kim Holburn
IT Network & Security Consultant
T: +61 2 61402408 M: +61 404072753
mailto:kim at holburn.net aim://kimholburn
skype://kholburn - PGP Public Key on request
More information about the Link
mailing list