User comments on ISPs
  >> Sky Broadband


Register (or login) on our website and you will not see this ad.


  Print Thread
Standard User Oliver341
(knowledge is power) Mon 16-Jul-12 18:11:41
Print Post

Sky D-Link potential vulnerability


[link to this post]
 
My Sky D-Link DSL-2640S has a thing whereby if I log in to the router's web interface with Internet Explorer, I can immediately gain full access to the router's web interface with Firefox without needing a user/pass (Firefox was fully flushed of cookies, temp files and saved passwords prior).

This also means if the web browser is closed, there is a 5 minute window for someone else to access the computer, and subsequently the router, without needing the router's password.

Essentially, logging in to the router's web interface with a browser grants unauthenticated access from that computer's IP address for a default of 5 minutes, or until the logout link is clicked. As I understand it, this differs from "normal" router behaviour.

I wonder what people's thoughts on this are. It seems to represent a cross-site scripting vulnerability, or a router security vulnerability where a PC is sited in a shared PC environment?

Oliver.

Edited by Oliver341 (Mon 16-Jul-12 18:12:33)

Administrator MrSaffron
(staff) Mon 16-Jul-12 19:01:23
Print Post

Re: Sky D-Link potential vulnerability


[re: Oliver341] [link to this post]
 
Plenty of sites where if you do not press logout, and reopen a browser window you are still logged in.

Or am I missing something?

Andrew Ferguson, andrew@thinkbroadband.com
www.thinkbroadband.com - formerly known as ADSLguide.org.uk
The author of the above post is a thinkbroadband staff member. It may not constitute an official statement on behalf of thinkbroadband.
Standard User Oliver341
(knowledge is power) Mon 16-Jul-12 19:04:18
Print Post

Re: Sky D-Link potential vulnerability


[re: MrSaffron] [link to this post]
 
In reply to a post by MrSaffron:
Plenty of sites where if you do not press logout, and reopen a browser window you are still logged in.

That's cookie-based auth.

I very much doubt if you switched to a different browser (which you don't normally use) you would still be logged in.

Oliver.


Register (or login) on our website and you will not see this ad.

Standard User blackmesa8
(fountain of knowledge) Mon 16-Jul-12 19:38:34
Print Post

Re: Sky D-Link potential vulnerability


[re: Oliver341] [link to this post]
 
This is just from the pc where you logged in within that 5 minute time frame the first time on the internal network right?

Blackmesa8
Standard User Oliver341
(knowledge is power) Mon 16-Jul-12 19:46:11
Print Post

Re: Sky D-Link potential vulnerability


[re: blackmesa8] [link to this post]
 
In reply to a post by blackmesa8:
This is just from the pc where you logged in within that 5 minute time frame the first time on the internal network right?

Correct. Upon logging in, the IP address of the connecting device (e.g. 192.168.0.2) is granted unauthenticated access to the router for a (default) period of 5 minutes (or until the logout button is clicked). Any application/script (malicious or otherwise) can go straight in and change settings (although mercifully DNS servers cannot be changed because Sky routers don't allow it!). The router's password is not required.

Oliver.

Edited by Oliver341 (Mon 16-Jul-12 19:47:00)

Standard User Kr1s69
(knowledge is power) Mon 16-Jul-12 20:10:34
Print Post

Re: Sky D-Link potential vulnerability


[re: Oliver341] [link to this post]
 
I don't see it as an issue.

You login to router from computer A, don't logout so its no surprise that you can still access it from computer A (and if i recall all other computers are locked out during this time)

This is all on the local network and so i don't expect the same restrictions as I would see on the internet.

Kris

Sky Broadband Unlimited
Ashington (Northumberland) Exchange
Fibre due June 2012!
Standard User blackmesa8
(fountain of knowledge) Mon 16-Jul-12 20:18:21
Print Post

Re: Sky D-Link potential vulnerability


[re: Oliver341] [link to this post]
 
Ok as long as its from the same device thats not so bad. I can see how it might be annoying but i can live with it specially as its only for 5 minutes.

blackmesa8
Standard User Oliver341
(knowledge is power) Mon 16-Jul-12 21:09:16
Print Post

Re: Sky D-Link potential vulnerability


[re: blackmesa8] [link to this post]
 
In reply to a post by blackmesa8:
Ok as long as its from the same device thats not so bad. I can see how it might be annoying but i can live with it specially as its only for 5 minutes.

Normally 5 minutes, but something logging in constantly (e.g. Routerstats) will leave the door open to the router for that IP address indefinitely.

Something to note for users of Routerstats.

Oliver.
  Print Thread

Jump to