Attacks Against 2wire Residential Gateway Routers

Presented at DEF CON 17 (2009), Aug. 2, 2009, 12:30 p.m. (20 minutes)

Some time ago there was a vulnerability in 2wire residential routers that allowed DNS Poisoning via Cross Site Request Forgery, this was widely exploited in Mexico where this router is most commonly used. The patch actually contained an Authentication Bypass vulnerability that made things worse, and now, after the patch got patched, there are still many public unpatched vulnerabilities that plague this device.

Presenters:

  • Pedro "hkm" Joaquin
    Pedro "hkm" Joaquin was born in Cozumel island in the Caribbean, currently he is an independent security researcher living in Mexico City. Pedro used to be a forensic investigator, malware analyst and antimalware software vendor for banks in Mexico. 8 years ago Pedro created a community called "Mexican Underground Community" (underground.org.mx) which focuses on hacking and phreaking, They are the largest hacking community in Mexico and have done many public and private meetings all over Mexico including some 2600 ones. Over the past years Pedro has been researching residential routers and has found several critical bugs in many of them, primarily focusing on the most popular and commonly used routers in Mexico, the 2wire residential gateway.
  • Pedro hkm Joaquini

Links:

Similar Presentations: