Dangerous new home router exploit

Security by Dave Naffziger on February 19, 2007 at 2:41 pm

A summary is at Security Pro News and the source paper can be found here(pdf), but the exploit is a simple one:

User visits website with malicious javascript
Javascript changes DNS settings on routers with default passwords
Hacker now owns the user’s Internet experience

Obviously, this is an easy hack to prevent, but how many users change their default password on their router? I occasionally check this when I see a ‘linksys’ or ‘netgear’ network. Unfortunately, if the network name is still the same so is the password 90% of the time.

The fascinating thing is that this change could be undetectable to the user. They could see a normal browsing experience, all while the hacker is attaching affiliate codes to links, or sending the user to the occasional spoofed phishing site.

Comments Off

This website uses IntenseDebate comments, but they are not currently loaded because either your browser doesn't support JavaScript, or they didn't load fast enough.

1710 CommentsDangerous+new+home+router+exploit2007-02-19+22%3A41%3A54Dave+Naffziger

No comments yet.

RSS feed for comments on this post.

Sorry, the comment form is closed at this time.

This work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 2.5 License. | Dave Naffziger’s Blog | Dave & Iva Naffziger

Dave Naffziger’s Blog

Dangerous new home router exploit

Related Posts

1710 Commentshttp://www.naffziger.net/blog/2007/02/19/dangerous-new-home-router-exploit/Dangerous+new+home+router+exploit2007-02-19+22%3A41%3A54Dave+Naffziger

1710 CommentsDangerous+new+home+router+exploit2007-02-19+22%3A41%3A54Dave+Naffziger