The Notebook Review forums were hosted by TechTarget, who shut down them down on January 31, 2022. This static read-only archive was pulled by NBR forum users between January 20 and January 31, 2022, in an effort to make sure that the valuable technical information that had been posted on the forums is preserved. For current discussions, many NBR forum users moved over to NotebookTalk.net after the shutdown.
Problems? See this thread at archive.org.

    HEADS-UP: Gaping security hole in TWC routers

    Discussion in 'Panasonic' started by mnementh, Oct 27, 2009.

  1. mnementh

    mnementh Crusty Ol' TinkerDwagon

    Reputations:
    1,116
    Messages:
    3,389
    Likes Received:
    29
    Trophy Points:
    116
    I just stumbled across this article in my ZDNet headlines:

    http://blogs.zdnet.com/security/?p=4702&tag=nl.e550

    Sounds pretty scary if you're using one of TWC's SMC8014 WiFi Router/MODEMs.

    They offered me one about a year ago as an "Upgrade", I believe. I told them I preferred to manage my own DMZ thank you. Little did I know they would have turned my own home network into one...

    My suggestion:

    If you've got one of these, IMMEDIATELY BUY YOUR OWN ROUTER, TURN OFF ALL WIFI INTERFACES AND DISABLE ALL ROUTER FUNCTIONS ON THE SMC8014 AND CONFIGURE IT AS A CABLE MODEM ONLY.

    If you don't know how to do this, contact your TWC Tech Support and ask them to do it; DO NOT TAKE "WE CAN'T DO THAT" FOR AN ANSWER.

    mnem
    Why not just paint a piece of cardboard to LOOK LIKE your front door? WHAT? We should CLOSE IT TOO?!?
     
    mnementh, Oct 27, 2009
    #1
  2. echidna3

    echidna3 Notebook Guru

    Reputations:
    11
    Messages:
    74
    Likes Received:
    0
    Trophy Points:
    15
    wow. just wow.

    anyone that knows the slightest thing about internet browsers could exploit that! hell, it could be exploited inadvertantly!
     
    echidna3, Oct 27, 2009
    #2
  3. Modly

    Modly Warranty Voider

    Reputations:
    1,413
    Messages:
    1,890
    Likes Received:
    0
    Trophy Points:
    55
    Being that I run noscript in Firefox, I'd have thought those extra menu items were standard features :D

    But seriously, that's pretty stupid to hide menus with javascript.
     
    Modly, Oct 27, 2009
    #3
  4. mnementh

    mnementh Crusty Ol' TinkerDwagon

    Reputations:
    1,116
    Messages:
    3,389
    Likes Received:
    29
    Trophy Points:
    116
    EXACTLY - to BOTH statements. And WORSE YET - these routers are configured by default for admin access from anywhere on the internet. This means you can... actually WILL, sooner or later... have script-kiddies DRIVE-BY hacking your router...

    mnem
    Talk about putting the SUCK in Internet SUH-CURITY...
     
    mnementh, Oct 27, 2009
    #4