In a talk on router hacking during Def Con on Sunday, Recurity Labs’ Felix (FX) Lindner told those in attendance that for the 20th anniversary of Def Con, the gift was China. This is because he was about to give a presentation on the seriously security challenged status of routers manufactured by Huawei.
Update: China’s Huawei Responds to US Hackers
The talk focused on the fact that Huawei routers were easily compromised. The AR series routers from Huawei (AR18 and AR29) that were tested are marketed for SMBs and smaller networks.
The firmware on the two models tested were found to be vulnerable to trivial exploits; including session hijacking, and stack overflows and heap overflows. One vulnerable function within the firmware of the routers, named ‘sprintf’, has more than 10,000 calls to it, meaning there are plenty of ways to target it.
Presently, the vulnerable hardware found in Asia and the Middle East, but that could change if Huawei gets their way, as they are pushing for expansion in Europe and the U.S.
Researchers FX and Gregor Kopf focused on routers from Huawei that are used in the home and office, but only because the equipment used by telecommunications firms was unavailable. Still, they share the same framework the researchers noted, so the big boxes are likely just as vulnerable.
Sam Erdheim, senior security strategist for network security firm AlgoSec, said that vulnerabilities such as the ones disclosed by Recurity Labs are at the root of security challenges. “It does no good to worry about threats when your core networking devices are providing attackers with an easy way to gain unauthorized access to systems and information.”
When asked about reports earlier this month that firms such as Huawei have pervasive access to a majority of the world’s telecoms. FX commented that nobody needs a backdoor, as the flaws exposed during his talk represent “plausible deniability.”
FX, also blasted Huawei for not having an easily accessible security contact. He hopes that the disclosure of numerous flaws will force the company to fix its problems, while acting as a wake-up call to their customers.
More from Steve Ragan
- Anonymous Claims Attack on IP Surveillance Firm Brickcom, Leaks Customer Data
- Workers Don’t Trust Employers with Personal Data: Survey
- Root SSH Key Compromised in Emergency Alerting Systems
- Morningstar Data Breach Impacted 184,000 Clients
- Microsoft to Patch Seven Flaws in July’s Patch Tuesday
- OpenX Addresses New Security Flaws with Latest Update
- Ubisoft Breached: Users Urged to Change Passwords
- Anonymous Targets Anti-Anonymity B2B Firm Relead.com
Latest News
- CISA, NSA Issue Guidance for IAM Administrators
- Analysis: SEC Cybersecurity Proposals and Biden’s National Cybersecurity Strategy
- Intel Boasts Attack Surface Reduction With New 13th Gen Core vPro Platform
- Cisco Patches High-Severity Vulnerabilities in IOS Software
- ‘Nexus’ Android Trojan Targets 450 Financial Applications
- Tackling the Challenge of Actionable Intelligence Through Context
- Dole Says Employee Information Compromised in Ransomware Attack
- Backslash Snags $8M Seed Financing for AppSec Tech
