NEWS - January 29, 2013
by Carol~ - 1/29/13 12:35 PM
50 Million Potentially Vulnerable to UPnP Flaws
In a project that found more than 80 million unique IP addresses responding to Universal Plug and Play (UPnP) discovery requests, researchers at Rapid7 were shocked to find that somewhere between 40 and 50 million of those are vulnerable to at least one of three known attacks.
A Rapid7 white paper enumerated UPnP-exposed systems connected to the Internet and identified the number of vulnerabilities present in common configurations. Researchers found that more than 6,900 product models produced by 1,500 different vendors contained at least one known vulnerability, with 23 million systems housing the same remote code execution flaw.
Between June 1 and Nov. 17, 2012, Rapid7 conducted weekly scans that sent simple service discovery protocUPnPol (SSDP) requests to each routable IPv4 address. In all, 2.2 percent of all public IPv4 addresses responded to the standard UPnP discovery requests. So, 81 million unique IP addresses responded and, upon deeper probing, researchers determined some 17 million further systems exposed the UPnP simple object access protocol (SOAP). This level of exposure was far higher than researchers had expected, according to the report.
Continued : https://threatpost.com/en_us/blogs/50-million-potentially-vulnerable-upnp-flaws-012913
UPnP flaws expose 50 million devices to attack, researchers find
UPnP Security Holes Expose Millions of Networked Devices to Attacks
UPnP flaws expose tens of millions of networked devices to remote attacks, researchers say