from Hacker News

Modems distributed by AT&T vulnerable

by crgt on 9/1/17, 7:10 PM with 12 comments

  • by laken on 9/1/17, 7:34 PM

    I don't understand how so many internet connected device's manufacturers don't even think to check if they have an open ports, especially an open SSH port. Or is it that they just don't care? I can't tell anymore.

  • by yegle on 9/1/17, 7:41 PM

    I'm very interested to get a copy of the said vulnerable firmware to poke around. How can I get one?

    One use case is for ATT Fiber users to get the 802.1x certificate from the router, and use your own router instead (RouterOS etc.).

  • by anonova on 9/1/17, 8:04 PM

    Another popular and flawed modem Arris released into the wild is the SB6190. You can easily DoS it: https://www.dslreports.com/shownews/Puma-6-Flaw-Lets-Attacke...

  • by sjbase on 9/1/17, 8:51 PM

    > "There’s no way people are not exploiting this in the wild"

    Hard to disagree there.

    Does it really usually take 2 months for something like this to get disclosed? Seems like anyone bored enough to run a SYN scan on one of these would find the vulnerable services instantly.