At least 700,000 routers that ISPs gave to their customers are vulnera

[atiustira]

WOW! That's a big hole in that firewall!

 

"The directory traversal vulnerability can be used by unauthenticated attackers to extract a sensitive file called config.xml, which is on most of the affected routers and contains their configuration settings.

The file also contains the password hashes for the administrator and other accounts on the device; the username and password for the user’s ISP connection (PPPoE); the client and server credentials for the TR-069 remote management protocol used by some ISPs; and the password for the configured wireless network, if the device has Wi-Fi capabilities. "

 

http://www.techhive.com/article/2899732/at-least-700000-routers-given-to-customers-by-isps-are-vulnerable-to-hacking.html#tk.nl_thbest

 

A list with some of the equipment that has the firmware by that manufacturer

 

https://wikidevi.com/w/index.php?title=Special:Search&limit=500&offset=0&profile=default&search=Shenzhen+Gongjin+Electronics

[V.T. Eric Layton]

YAY! My beat up ol' Westell UltraLine Series3 9100EM isn't on the list.

 

[atiustira]

That's a nice looking piece of equipment.

[V.T. Eric Layton]

Verizon gave it to me about 5 years ago. It works.