UPnP security Issues
It may not be a Mac issues, but your UPnp devices such as your router are using it.
So please take note.
http://www.f-secure.com/weblog/archives/00002492.html
http://www.theregister.co.uk/2013/01/29/hdmoore_upnp_flaw_rapid7/
http://news.cnet.com/8301-1009_3-57566366-83/upnp-networking-flaw-puts-millions-of-pcs-at-risk/
Comments
-
Please do not delete this message.
Please take note of this... this is very important.
CERT Releases UPnP Security Advisory
added Tuesday, January 29, 2013 at 4:46 pm
Multiple vulnerabilities have been announced in libupnp, the open source portable SDK for UPnP devices. Libupnp is employed by hundreds of vendors for UPnP-enabled devices. Information is also available in CERT Vulnerability Note VU#922681.
US-CERT recommends that affected UPnP device vendors and developers obtain and employ libupnp version 1.6.18, which addresses these vulnerabilities.
US-CERT recommends that users and administrators review CERT Vulnerability Note VU#922681, disable UPnP (if possible), and restrict access to SSDP (1900/udp) and Simple Object Access Protocol (SOAP) services from untrusted networks such as the Internet.Refer this to hardware vulnerabiity such as Wifi Routers, etc.
http://www.kb.cert.org/vuls/id/922681
-
Please goto www.grc.com sheildsup and select for uPnP (Universal Plug and Play) security vulnerability issues.
See if your computer or router is having this issues.
🚩 What Do You Think?
We’d love your thoughts on our fresh look! Quick survey, big impact!