Welcome Guest! To access all forums & features, please register an account or sign-in. → Why register?


LoJack for Android to be embedded in Samsung Galaxy S4's firmware in Back Page News

Test your router to see if its vulnerable to the UPnP Exploit.

Started by warwagon, Feb 03 2013 18:08 upnpvulnerabilitytest

75 replies to this topic - - - - -

#1 +warwagon

    Only you can prevent forest fires.

  • 21,705 posts
    • Joined: 30-November 01
  • Location: Iowa

Posted 03 February 2013 - 18:08

As of recently it has been discovered that most routers expose UPnP to the outside world, which is not good at all. This allows attackers "from the internet" to open ports in your routers.

https://community.ra...nplug-dont-play


It is recommended you DISABLE UPnP in your router. Below is a test to see if your router is vulnerable. Steve Gibson, the creator of the very popular "Shields-up" which scans your IP for open ports in your router has recently added a test for the upnp vulnerability. Simply click the link then click the "proceed" button. You will then see a button for the UPnP test. Good luck!


The Test

https://www.grc.com/x/ne.dll?bh0bkyd2

Ad Bot


#2 MiniMeSorinel

    I aim to misbehave.

  • 318 posts
    • Joined: 27-October 05
  • Location: Bucuresti, ROU
  • OS: Windows 8 Pro
  • Phone: Huawei U1000s... yeah, I know :(

Posted 03 February 2013 - 18:15

Quote

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

Guess that's a good thing...

#3 tsupersonic

    Neowinian UNSTOPPABLE

  • 5,343 posts
    • Joined: 30-September 06
  • Location: New York
  • OS: Win. 8 x64
  • Phone: HTC One (AT&T)

Posted 03 February 2013 - 18:17

View PostMiniMeSorinel, on 03 February 2013 - 18:15, said:

Guess that's a good thing...
Got the same results

#4 OP +warwagon

    Only you can prevent forest fires.

  • 21,705 posts
    • Joined: 30-November 01
  • Location: Iowa

Posted 03 February 2013 - 18:18

Yes.. Those are good results :)

#5 Detection

    Detecting stuff...

  • 8,369 posts
    • Joined: 30-October 10
  • Location: UK
  • OS: 7 SP1 x64

Posted 03 February 2013 - 18:20

I have uPnP enabled but still fine (Expected as much with DD-WRT though)

Posted Image

#6 LUTZIFER

    Resident Evil

  • 2,312 posts
    • Joined: 09-January 02
  • Location: Vancouver Island, BC CANADA
  • OS: Windows 7 Ultimate
  • Phone: Google Nexus 4

Posted 03 February 2013 - 18:20

Been a long time since I've last been to that site. It's been around for many many years.

I tried that test...

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

#7 pes2013

    Resident Fanatic

  • 881 posts
    • Joined: 24-September 12

Posted 03 February 2013 - 18:20

View Postwarwagon, on 03 February 2013 - 18:08, said:

It is recommended you DISABLE UPnP in your router.
No; It is recommened that you get a good router. I have UPnP on my router enabled and

Quote

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

So either I have a good router or the test sucks.

#8 nyolc8

    Resident Fanatic

  • 595 posts
    • Joined: 25-May 07
  • Location: Budapest, Hungary
  • OS: OSX Mountain Lion 10.8.2, Windows 8 Pro WMC

Posted 03 February 2013 - 18:21

I have UPnP enabled all the time and the result is:

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

#9 OP +warwagon

    Only you can prevent forest fires.

  • 21,705 posts
    • Joined: 30-November 01
  • Location: Iowa

Posted 03 February 2013 - 18:22

View PostDetection, on 03 February 2013 - 18:20, said:

I have uPnP enabled but still fine (Expected as much with DD-WRT though)

Posted Image

Correct this is a route test, not a computer test.

#10 Livin in a box

    Oh man. I shot Marvin in the face.

  • 2,377 posts
    • Joined: 03-January 09
  • Location: Manchester, UK
  • OS: Windows 8 Pro
  • Phone: HTC Desire S

Posted 03 February 2013 - 18:22

THE EQUIPMENT AT THE TARGET IP ADDRESS
ACTIVELY REJECTED OUR UPnP PROBES!

Yay!

#11 ajua

    Neowinian Senior

  • 2,053 posts
    • Joined: 12-February 07
  • Location: Mexico

Posted 03 February 2013 - 18:26

It's only recommended to disable UPnP on your routers if they don't pass that test, which means they are exposing you to the outer world.

Just passed the test on three touters with UPnP enabled. Two of them are running DD-WRT.

Attached Image: upnp.png

#12 Pupik

    Neowinian UNSTOPPABLE

  • 5,580 posts
    • Joined: 09-December 05

Posted 03 February 2013 - 18:28

upnp enabled on wr841nd.
"THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!"

#13 OP +warwagon

    Only you can prevent forest fires.

  • 21,705 posts
    • Joined: 30-November 01
  • Location: Iowa

Posted 03 February 2013 - 18:32

I disable it anyway. The fact that UPnP, by design, lets any application communicate with the router and open ports should make any security conscious user uneasy.

#14 TPreston

    Neowinian Senior

  • 1,700 posts
    • Joined: 18-July 12
  • Location: Ireland
  • OS: Windows Embedded Standard 8 & Server 2012/08 Datacenter
  • Phone: Nokia Lumia 920

Posted 03 February 2013 - 18:33

THE EQUIPMENT AT THE TARGET IP ADDRESS
ACTIVELY REJECTED OUR UPnP PROBES!

Cisco IOS FTW

#15 trek

    7 / X

  • 2,781 posts
    • Joined: 11-August 02
  • Location: Vancouver, Canada

Posted 04 February 2013 - 08:12

THE EQUIPMENT AT THE TARGET IP ADDRESS
DID NOT RESPOND TO OUR UPnP PROBES!

Why would you disable uPnP anyways? It allows internal hosts to dynamically open ports like XBL or PSN for gaming and voice. Without it you'd have to manually open every single port those services and similar ones use. Just keep your internal hosts clean.
Back to Internet, Network & Security · Next Unread Topic →


  1. Quick Nav
  2. Neowin Forums
  3. Technical Help & Support
  4. Internet, Network & Security