5 Oct
2014
5 Oct
'14
11:21 a.m.
Greetings to everybody.
Following Shellshock...
There is another hole, called tmUnblock.cgi
targetted on some Cisco Linksys routers:
http://www.scip.ch/en/?vuldb.12362
More info on Internet, for instance:
http://security.stackexchange.com/questions/68405/what-is-tmunblock-cgi-and…
Even targeted at specific hardware, it is poking everywhere...
Short extract from my apache2.log
50.193.84.18 - - [05/Oct/2014:14:03:33 +0200] "GET /tmUnblock.cgi
HTTP/1.1" 400 518 "-" "-"
Best regards.
Tom - sp2lob
5 Oct
5 Oct
3:26 p.m.
It's generally recommended to NEVER have wireless router's web-ui
enabled on the Internet facing side. To confirm such things, I always
recommend people to run a port-scan against their current IP address
from services such as:
https://www.grc.com/x/ne.dll?bh0bkyd2
https://www.qualys.com/forms/freescan/?leadsource=20026142&kw=port%20sc…
etc
--David
(Please trim inclusions from previous messages)
_______________________________________________
Greetings to everybody.
Following Shellshock...
There is another hole, called tmUnblock.cgi
targetted on some Cisco Linksys routers:
http://www.scip.ch/en/?vuldb.12362
More info on Internet, for instance:
http://security.stackexchange.com/questions/68405/what-is-tmunblock-cgi-and…
Even targeted at specific hardware, it is poking everywhere...
Short extract from my apache2.log
50.193.84.18 - - [05/Oct/2014:14:03:33 +0200] "GET /tmUnblock.cgi
HTTP/1.1" 400 518 "-" "-"
Best regards.
Tom - sp2lob
_________________________________________
44Net mailing list
44Net(a)hamradio.ucsd.edu
http://hamradio.ucsd.edu/mailman/listinfo/44net
3701
days inactive
3701
days old
1 comments
2 participants
participants (2)
-
David Ranch -
sp2lob