Router scan

Maya to

Technology@beehaw.org · 10 days ago

Today I scanned my router with routersploit. The scan ended and showed one vulnerability: eseries_themoon_rce.

I searched the internet and found that this is a vulnerability in Linksys E-Series routers. But I am not on linksys at all. And I didn’t find anything about getting rid of it.

I’m wondering if someone knows how to make this vulnerability eliminate?

You must log in or register to comment.

Chat

Areldyb [he/him]@beehaw.org
link
fedilink
English
arrow-up
27·
10 days ago
If your router isn’t even a Linksys router, then it’s most likely a false positive result and can be safely ignored. If you want to be extra sure, you could attempt to actually exploit the vulnerability with routersploit and see whether you get anywhere.

In general, the fix for a vulnerability in an end-user network device is some combination of “update the firmware” and “disable the vulnerable feature”.
- MayaOP
  link
  fedilink
  arrow-up
  2·
  10 days ago
  Hi, thank you for your answer. I solved the problem. I performed a router factory reset. After that I run the security test again and it didn’t find any vulnerabilities.
PaddleMaster@beehaw.org
link
fedilink
arrow-up
11·
10 days ago
Looks like there’s a metasploit available. You can use that on your router to see if it’s susceptible. A quick google search indicates that this is only successful on older routers without input validation.

In general, follow good cyber security hygiene, and update the firmware on your router. If your router no longer is supported by the vendor (no more firmware updates for vulnerabilities found), then it’s old and you should upgrade.
- some_guy@lemmy.sdf.org
  link
  fedilink
  arrow-up
  8·
  10 days ago
  You might also be able to replace the firmware with something like DD-WRT or OpenWRT or Tomato or other third-party firmware.
  - u/lukmly013 💾 (lemmy.sdf.org)@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    3·
    10 days ago
    Good idea.
    
    You can still get the newest DD-WRT builds even on the WRT54G.
    That is a Wi-Fi router from 2002.
    
    Of course, the features are sort of limited. I tried the VPN build (on WRT54GL), but I couldn’t get the OpenVPN client to connect. I found some thread mentioning it may be missing something, but I don’t know if that’s the issue.
    
    Anyway, without overclocking I’d expect like 2Mbps. I mean, it barely handles HTTPS. Just trying to load the WebUI maxes out the CPU for several seconds if trying to use HTTPS.
    Perhaps it’s not missing anything software-wise, but it’s just so slow it times out during handshake.
    So I just put the std build on it in case it will be useful at some point.
- MayaOP
  link
  fedilink
  arrow-up
  2·
  10 days ago
  Thank you for advice and additional info. I bought a modern router Cudy WR3000 with WiFi-6 support. And it has the last firmware update available.

Technology@beehaw.org

technology@beehaw.org

Create a post

You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: !technology@beehaw.org

Rumors, happenings, and innovations in the technology sphere. If it’s technological news or discussion of technology, it probably belongs here.

Subcommunities on Beehaw:

This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

Visibility: Public

This community can be federated to other instances and be posted/commented in by their users.

496 users / day
1.85K users / week
4.06K users / month
10.2K users / 6 months
857 local subscribers
37.3K subscribers
3.01K Posts
78K Comments
Modlog