DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 18th March 2013
J65nko J65nko is offline
Administrator
 
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 4,125
Default Huawei USB modems vulnerable

From http://www.theregister.co.uk/2013/03...vulnerability/

Quote:
Huawei has been accused of poor security practice by Russian researcher Nikita Tarakanov, who told Black Hat Europe last week that the vendor's 3G and 4G devices are vulnerable and its update server is a massive attack vector.

The update server in the Netherlands that Tarakanov tested probably isn't the only one used by Huawei, but he found it was running on the hoary code of Windows IIS 6.0 – a relic from Windows Server 2003. If the server were compromised, he said, an attacker could distribute a malicious update to millions of dongle users.
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Reply With Quote
  #2   (View Single Post)  
Old 18th March 2013
IdOp's Avatar
IdOp IdOp is offline
Too dumb for a smartphone
 
Join Date: May 2008
Location: twisting on the daemon's fork(2)
Posts: 1,027
Default

Interesting, thank you. At one point I was considering an ISP that uses their devices. Some of these modems can be used under Linux and BSD. I wonder to what extent they may or may not be affected? Since they're not a platform supported by Huawei, there would be no rogue configuration files supplied. The article mentions access to /usr/local on iOS, but again it's not clear to me if that problem would extend to other Unix-like.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
PPP config for USB-based 3G / NextG HSDPA SIERRA 21 modems (FreeBSD 8.0) psychonics FreeBSD General 6 14th June 2010 02:25 AM
Huawei E220 USB / UK Three.co.uk wimwauters OpenBSD General 0 30th April 2009 04:42 PM
Huawei E220 USB / UK Vodafone DraconianTimes OpenBSD General 6 30th April 2009 12:53 AM
how to configure ipfw with 4 modems??? m4st3rcr4zy FreeBSD General 0 13th February 2009 06:26 AM
Firewall on (A)DSL modems JMJ_coder General software and network 10 30th January 2009 12:31 AM


All times are GMT. The time now is 04:37 AM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick