Jump to content

Welcome Guest! To access all forums & features, please register an account or sign-in. → Why register?




Photo

Test your router to see if its vulnerable to the UPnP Exploit.

Started by +warwagon , Feb 03 2013 18:08
upnpvulnerabilitytest

  • Please log in to reply
75 replies to this topic - - - - -

#1 +warwagon

warwagon

    Only you can prevent forest fires.

  • 21,969 posts
  • Location: Iowa

Posted 03 February 2013 - 18:08

As of recently it has been discovered that most routers expose UPnP to the outside world, which is not good at all. This allows attackers "from the internet" to open ports in your routers.

https://community.ra...nplug-dont-play


It is recommended you DISABLE UPnP in your router. Below is a test to see if your router is vulnerable. Steve Gibson, the creator of the very popular "Shields-up" which scans your IP for open ports in your router has recently added a test for the upnp vulnerability. Simply click the link then click the "proceed" button. You will then see a button for the UPnP test. Good luck!


The Test

https://www.grc.com/x/ne.dll?bh0bkyd2

Ad Bot (disabled when logged in)


#2 MiniMeSorinel

MiniMeSorinel

    I aim to misbehave.

  • 319 posts
  • Location: Bucuresti, ROU
  • OS: Windows 8 Pro
  • Phone: Huawei U1000s... yeah, I know :(

Posted 03 February 2013 - 18:15

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!


Guess that's a good thing...

#3 tsupersonic

tsupersonic

    Neowinian UNSTOPPABLE

  • 5,422 posts
  • Location: New York
  • OS: Win. 8 x64
  • Phone: HTC One (AT&T)

Posted 03 February 2013 - 18:17

Guess that's a good thing...

Got the same results

#4 OP +warwagon

warwagon

    Only you can prevent forest fires.

  • 21,969 posts
  • Location: Iowa

Posted 03 February 2013 - 18:18

Yes.. Those are good results :)

#5 Detection

Detection

    Detecting stuff...

  • 8,369 posts
  • Location: UK
  • OS: 7 SP1 x64

Posted 03 February 2013 - 18:20

I have uPnP enabled but still fine (Expected as much with DD-WRT though)

Posted Image

#6 LUTZIFER

LUTZIFER

    Resident Evil

  • 2,376 posts
  • Location: Vancouver Island, BC CANADA
  • OS: Windows 7 Ultimate
  • Phone: Google Nexus 4

Posted 03 February 2013 - 18:20

Been a long time since I've last been to that site. It's been around for many many years.

I tried that test...

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

#7 pes2013

pes2013

    Resident Fanatic

  • 881 posts

Posted 03 February 2013 - 18:20

It is recommended you DISABLE UPnP in your router.

No; It is recommened that you get a good router. I have UPnP on my router enabled and

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!


So either I have a good router or the test sucks.

#8 nyolc8

nyolc8

    Resident Fanatic

  • 608 posts
  • Location: Budapest, Hungary
  • OS: OSX Mountain Lion 10.8.4, Windows 8 Pro WMC

Posted 03 February 2013 - 18:21

I have UPnP enabled all the time and the result is:

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

#9 OP +warwagon

warwagon

    Only you can prevent forest fires.

  • 21,969 posts
  • Location: Iowa

Posted 03 February 2013 - 18:22

I have uPnP enabled but still fine (Expected as much with DD-WRT though)

Posted Image


Correct this is a route test, not a computer test.

#10 Livin in a box

Livin in a box

    Oh man. I shot Marvin in the face.

  • 2,411 posts
  • Location: Manchester, UK
  • OS: Windows 8 Pro
  • Phone: HTC One

Posted 03 February 2013 - 18:22

THE EQUIPMENT AT THE TARGET IP ADDRESS
ACTIVELY REJECTED OUR UPnP PROBES!

Yay!

#11 ajua

ajua

    Neowinian Senior

  • 2,057 posts
  • Location: Mexico

Posted 03 February 2013 - 18:26

It's only recommended to disable UPnP on your routers if they don't pass that test, which means they are exposing you to the outer world.

Just passed the test on three touters with UPnP enabled. Two of them are running DD-WRT.

upnp.png

#12 Pupik

Pupik

    Neowinian UNSTOPPABLE

  • 5,642 posts

Posted 03 February 2013 - 18:28

upnp enabled on wr841nd.
"THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!"

#13 OP +warwagon

warwagon

    Only you can prevent forest fires.

  • 21,969 posts
  • Location: Iowa

Posted 03 February 2013 - 18:32

I disable it anyway. The fact that UPnP, by design, lets any application communicate with the router and open ports should make any security conscious user uneasy.

#14 TPreston

TPreston

    Neowinian Senior

  • 1,821 posts
  • Location: Ireland
  • OS: Windows Embedded Standard 8 & Server 2012/08 Datacenter
  • Phone: Nokia Lumia 920

Posted 03 February 2013 - 18:33

THE EQUIPMENT AT THE TARGET IP ADDRESS
ACTIVELY REJECTED OUR UPnP PROBES!

Cisco IOS FTW

#15 trek

trek

    7 / X

  • 2,786 posts
  • Location: Vancouver, Canada

Posted 04 February 2013 - 08:12

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

Why would you disable uPnP anyways? It allows internal hosts to dynamically open ports like XBL or PSN for gaming and voice. Without it you'd have to manually open every single port those services and similar ones use. Just keep your internal hosts clean.
Back to Internet, Network & Security
  1. Neowin Forums
  2. Technical Help & Support
  3. Internet, Network & Security
  4. Privacy Policy
  5. Community Rules ·