+ Reply to Thread
Results 1 to 15 of 15
  1. Senior Member AlexNguyen's Avatar
    Join Date
    Jun 2011
    Location
    Montreal, Canada
    Posts
    299

    Certifications
    CISSP, CISA, CSSA, C|EH, C|HFI, GCFE, GPEN, VCP5, MCTS, MCITP, ITIL v3 Foundation
    #1

    Default The Email that Hacks You

    Source: How an email Could Compromise your Wireless Router.

    Opening a legitimate looking email on an iPhone, iPad or Mac while using an Asus router with a default or guessable password could compromise the security of your internal network.

    There's a short video that demonstrates the problem.
    In this demonstration, the victim receives an email - when the email is opened, the internal network is compromised (The DNS servers used by the router were changed to an IP address controlled by the attacker).
    Knowledge has no value if it is not shared.
    Knowledge can cure ignorance, but intelligence cannot cure stupidity.
    Reply With Quote Quote  


  2. Login/register to remove this advertisement.
  3. Why is the rum gone!? paulgswanson's Avatar
    Join Date
    Oct 2011
    Location
    Jacksonville, Fl
    Posts
    302

    Certifications
    A+, Network+; Security+, Project+, MTA:N, MTA:OS, MTA:Sec, CIW Web Foundations
    #2
    nice, that looks stupidly easy... My passwords are obviously secure but I think im gonna start checking the source code on my spams emails just for giggles to see whats hidden in there. I would never have though that the div section could contain dirty code like that.
    Reply With Quote Quote  

  4. BOBBY_TABLES RobertKaucher's Avatar
    Join Date
    Dec 2007
    Location
    Lebanon, Ohio - USA
    Posts
    4,274

    Certifications
    MCSD Web Apps/SharePoint Applications, MCITP: DBA 2005/2008, EA, EDA7, Linux+, Sec+, MCSE, MCDST, MCTS
    #3
    BTW, I see no reason why this would not work on an Android or any other device for that matter, if it autoloaded the images.
    Reply With Quote Quote  

  5. Stayed at a Holiday Inn.. the_Grinch's Avatar
    Join Date
    May 2007
    Posts
    2,875

    Certifications
    BS-CST EMT-B MPSC Security+
    #4
    Someone uses Asus routers?
    WIP:
    Securitytube Python Scripting Expert
    MS in Applied Computer Science - DSU - Applying
    Reply With Quote Quote  

  6. BOBBY_TABLES RobertKaucher's Avatar
    Join Date
    Dec 2007
    Location
    Lebanon, Ohio - USA
    Posts
    4,274

    Certifications
    MCSD Web Apps/SharePoint Applications, MCITP: DBA 2005/2008, EA, EDA7, Linux+, Sec+, MCSE, MCDST, MCTS
    #5
    That's exactly what I thought when I read it!
    Reply With Quote Quote  

  7. Senior Member nosoup4u's Avatar
    Join Date
    Feb 2012
    Posts
    360

    Certifications
    VCP-DCV/DT, VCAP-DCD, MCITP, MCSE
    #6
    In soviet rus.......
    Reply With Quote Quote  

  8. Google Ninja jibbajabba's Avatar
    Join Date
    Jun 2008
    Location
    Ninja Cave
    Posts
    3,726

    Certifications
    TechExam Certified Alien Abduction Professional
    #7
    Asuwhat?
    Reply With Quote Quote  

  9. Matrix(Config)# Roguetadhg's Avatar
    Join Date
    Jan 2012
    Location
    SC
    Posts
    2,380

    Certifications
    #Cisco: NA #CompTIA: A.N.S
    #8
    I'm glad I'm not the only one that thought "Asus made routers?!"

    What's next, a Nike Switch?
    Reply With Quote Quote  

  10. He Hate Me Zartanasaurus's Avatar
    Join Date
    Sep 2009
    Posts
    1,919

    Certifications
    CCIE:R&S, JNCIA-JunOS, CCA-Netscaler 10, MCITP:EA
    #9
    Quote Originally Posted by nosoup4u View Post
    In soviet rus.......
    Beat me to it.
    Currently reading:
    IPSec VPN Design 44%
    Mastering VMWare vSphere 5​ 42.8%
    Reply With Quote Quote  

  11. Sith Lord SephStorm's Avatar
    Join Date
    Dec 2009
    Location
    Atlanta, GA
    Posts
    1,573

    Certifications
    GCIH, SFCP, CCENT, CPT, CEH, QND, Security+
    #10
    I always knew that auto-ex email code was an issue, and yet every version of microsoft outlook, and some other email clients auto open emails when you click on them, and I believe runs in html mode by default, allowing images to be loaded. I propose a petition to remove the preview pane as a default setting.

    (its also interesting that I was reading an old security book that says instead of deleting malicious emails you should open them an view the (possibly falsified) headers... I guess the author wasn't aware of falsified headers, or autoloaded malware.)
    Last edited by SephStorm; 11-28-2012 at 05:58 PM.
    Reply With Quote Quote  

  12. Network Security tpatt100's Avatar
    Join Date
    Aug 2009
    Location
    Ypsilanti, MI
    Posts
    2,542

    Certifications
    CISSP, GIAC G2700, CEH, CHFI, Security+, CCENT, N+, A+
    #11
    Quote Originally Posted by the_Grinch View Post
    Someone uses Asus routers?
    I bought an Asus RT-N66U router when my original one died. I got it based on reviews that it was one of the best performing home routers available now.
    Reply With Quote Quote  

  13. Senior Member Lizano's Avatar
    Join Date
    Jun 2007
    Posts
    221

    Certifications
    CCNP Security
    #12
    Asus makes routers?

    I love their tablets, but routers?
    Reply With Quote Quote  

  14. Junior Starcraft Engineer
    Join Date
    Mar 2007
    Location
    Twin Cities, Minnesota
    Posts
    2,777

    Certifications
    A+, Net+, Security+, MCSA 2003, MCTS Win 7, AD, Net Infrastructure
    #13
    I'm surprised this is the first such vulnerability I've read about. I've been wondering for a long time now what would stop some kind of exploit or otherwise nefarious activity from taking place in HTML embedded in emails. It's so stupidly easy to implement that I'm really shocked we don't run into it all the time.

    As far as Asus routers, all the Taiwanese computer/networking/component companies eventually expand into each others' markets. Anyone who has watched Newegg much over the years will see it. It's to the point where you can almost pick a vendor and make a PC using entirely their components (with CPUs as the obvious exception).
    Working B.S., Computer Science
    Complete: 55/120 credits SPAN 201, LIT 100, ETHS 200, AP Lang, MATH 120, WRIT 231, ICS 140, MATH 215, ECON 202, ECON 201, ICS 141, MATH 210, LING 111, ICS 240
    In progress: CLEP US GOV,
    Next up: MATH 211, ECON 352, ICS 340
    Reply With Quote Quote  

  15. Junior Member
    Join Date
    Nov 2012
    Posts
    15
    #14
    Hmmmmmm....
    Reply With Quote Quote  

  16. Senior Member
    Join Date
    Apr 2007
    Location
    Southern NJ
    Posts
    706

    Certifications
    A+, Net+, Security+, Project+, CASP, Mobility+ Beta, CCENT, CCNA, VCA-DCV, VCA-Cloud, MCTS:680
    #15
    I don't see why it would be limited to just Asus routers, the article mentions that they only tested this on 2 Asus routers and that others are possible. I would guess with a little more scripting (maybe a call to a rainbow file) any password could be cracked. Would make the email larger but how many users actually check the email size?

    Thinking of testing it out on some older Belkin and DLinks I have laying around.
    WGU B.S.IT - Network Administration
    Courses Completed WFV1, BBC1, CLC1, LAE1, QLT1, MGC1, TPV1, INC1, INT1, BVC1, QBT1, DHV1, COV1, CQV1, CUV1, BOV1, DFV1, CSV1
    Courses Needed LUT1, AHV1, AIV1, AJV1, SBT1, RBT1
    Satisfied/Met/Transfered CWV1, DEV1, AXV1, GAC1, HHT1, AGC1, CPV1, CTV1, BNC1, IWC1, IWT1
    Reply With Quote Quote  

+ Reply to Thread

Social Networking & Bookmarks