Posted: Wed Jul 09, 2008 12:52 am Post subject: Planet wrt-414 Router HTTP-Proxy vulnerability.
Hello everyone, I am new to this forum so I am not sure if this is the right place to ask this question, sorry if it is not.
I ran a NESSUS scan using X-Scan v3.3 on my router and noticed that I have 3 security holes that can allow any one to connect to my router as a HTTP-Proxy on the port 8080, and also an attacker can use
CONNECT http://myip:23 so he would be able to start an interactive session on my router on the telnet service, and yes the 23 port is closed.
I didn't start this service, and I don't want it to be available, so I would like to know if I can turn it off.
NESSUS's solution says to reconfigure my router to refused CONNECT or POST requests. My router doesn't have that option or I just don't know what to do, any help would be highly appreciated.
You cannot post new topics in this forum You cannot reply to topics in this forum You cannot edit your posts in this forum You cannot delete your posts in this forum You cannot vote in polls in this forum