Hacking the Routers: SOHO Router Security

November 9th, 2008

We’ve been taking a close look at some popular SOHO routers lately, and have started to find some really interesting stuff. It’s actually a little disconcerting – I don’t think that we have seen a router that doesn’t contain some type of exploitable vulnerability. We’ve written up a preliminary paper detailing some of the issues that we’ve discovered; there are some other, more serious issues that we’re still in the middle of investigating and we’ll hopefully have more information about those up here soon. An excerpt from the introduction:

With embedded devices permeating today’s home networks, they have begun to attract a higher level of scrutiny from the security community than in previous years. In particular, the members of GNUCitizen have been relentlessly testing routers and wireless access points. Their discovery of multiple vulnerabilities in the BT Home Hub router affected a wide range of home networks in the UK [1], and their Router Hacking Challenge prompted a flurry of vulnerability reports against a variety of popular home routers, including the venerable Linksys WRT54G [2]. Specific vulnerabilities in home routers range from traditional Web attacks, such as XSS and CSRF, to authentication bypass attacks and buffer overflows; it is assumed that the reader has at least a passing knowledge of the attacks described in this paper.

The purpose of this paper is to outline the security measures being taken by vendors to prevent such attacks in their home routing products, what those security measures accomplish, and where they fall short. We will use existing network tools to examine common vulnerabilities in a range of popular devices and demonstrate weaknesses in the security of those devices; additionally, we will examine common trends in security measures that have been duplicated across vendors, and examine how those trends help and hinder the security of their devices. In particular, we will examine the following home routers, which are some of the latest offerings from their respective vendors at the time of this writing:

 

  • Linksys WRT160N
  • D-Link DIR-615
  • Belkin F5D8233-4v3
  • ActionTec MI424-WR

 

Read the entire article here.

, ,

12 Responses to “Hacking the Routers: SOHO Router Security”

  1. clay Says:
    November 14th, 2008 at 10:02 am

    Great paper. I linked to it on my blog ( http://blog.techscrawl.com ). Keep up the good work.

  2. Interconnecting Worlds » Blog Archive » Analyzing SOHO Router Security Says:
    December 17th, 2008 at 4:29 am

    [...] http://www.sourcesec.com/2008/11/09/hacking-the-routers-soho-router-security/ [...]

  3. Mike Green Says:
    August 1st, 2010 at 12:01 am

    Very interesting.

  4. Nobuko Lastovica Says:
    August 30th, 2010 at 3:15 pm

    Sick and tired of obtaining low amounts of useless traffic to your website? Well i wish to let you know about a new underground tactic which makes me personally $900 on a daily basis on 100% AUTOPILOT. I really could be here all day and going into detail but why dont you merely check their site out? There is really a great video that explains everything. So if your seriously interested in producing effortless money this is the site for you. Auto Traffic Avalanche

  5. Jayson Beucler Says:
    October 8th, 2010 at 8:49 am

    I hope you had a great day! i found this article very well writen, i will subscribe to your feed to stay updated.

  6. vpn Says:
    December 13th, 2010 at 3:48 pm

    What a great review! I wanted to get one immediately after reading your review. You mentioned that Safety 1st sent you two Complete Air Convertible Car Seats with Air Protect at no charge, to try out and keep; I was wondering how can I get one to try out as well? Can you provide advise and insights? Thank you!

  7. free weight loss tips Says:
    January 29th, 2011 at 2:14 am

    Youre so cool! I dont suppose Ive read something like this before. So good to search out any individual with some unique ideas on this subject. realy thanks for beginning this up. this website is one thing that’s wanted on the net, somebody with a bit originality. helpful job for bringing something new to the internet!

  8. cleaning services new york Says:
    January 29th, 2011 at 3:39 am

    I couldn’t agree more. at the moment i am studying this type of stuff at a small college in san diego and am always on the quest for new ideas and fresh perspectives on the scene. I commend you on your “1st4 Eve-Online Blog | Eve Online Loan Shark Guide” page! it delivered some much needed info.

  9. Merrilee Ko Says:
    March 9th, 2011 at 1:07 am

    Thank you for the submit. Keep the good operate.

  10. wireless internet router security Says:
    June 24th, 2011 at 12:51 pm

    I agree with what you have to say to a certain degree, and the points you make about SourceSec Security Research » Blog Archive » Hacking the Routers: SOHO Router Security are valid ones. You have obviously put some thought into what you have to say regarding SourceSec Security Research » Blog Archive » Hacking the Routers: SOHO Router Security and your site is well worth visiting again.

  11. mass ping Says:
    December 14th, 2011 at 11:32 pm

    Simply want to say your article is as surprising. The clarity for your put up is just spectacular and that i could assume you are an expert in this subject. Well together with your permission let me to take hold of your RSS feed to keep up to date with impending post. Thank you a million and please continue the rewarding work.

  12. Juan Lagrone Says:
    December 16th, 2011 at 10:26 am

    Great weblog here! Additionally your website so much up very fast! What web host are you using? Can I am getting your affiliate hyperlink on your host? I desire my site loaded up as quickly as yours lol

Leave a Reply