Questions tagged [upnp]

11 questions
32
votes
6 answers

Is UPnP still insecure?

In today's world, on equipment that is properly updated to the latest software/firmware, is UPnP still insecure, or have its vulnerabilities been fixed?
Daniel
  • 371
  • 1
  • 3
  • 4
8
votes
2 answers

Found an application (Whatsapp) initiating UPnP requests, is it something that I should worry about?

I have logged in into my router using the web interface. I was checking UPnP forwarding (which is enabled by default), and found out that whatsapp is initiating a UPnP request on port 65072. Is there a way that I can understand, why and how…
Hadev
  • 81
  • 1
  • 1
  • 2
3
votes
2 answers

Is Chromecast's UPnP requirement "a security nightmare"?

I'd like to use Chromecast on our office network. Doing so requires enabling UPnP (Universal Plug and Play). A quick search turns up statements like this: The US Department of Homeland Security is urging everyone to disable the common networking…
Paul Draper
  • 958
  • 8
  • 18
3
votes
1 answer

Why is home Windows 10 machine listening on port 8080 by default?

Ever since we upgraded one of our home windows machines to Windows 10, Kaspersky has been logging blocked network intrusion attempts over port 8080. The exploit is a strange one and tries to hit a vulnerability that the machine doesn't have. …
3
votes
1 answer

How UPnP is vulnerable if the attacker is not connected in the same network?

I read a lot about UPnP vulnerability and I understand it to some extent. What I don't understand is how attacker will attack if he is not connected to the same network. I read how attacker can do port mapping on the router. But to do that, attacker…
azizulhakim
  • 131
  • 4
2
votes
1 answer

Why is uPnP settings in router showing external IP address and WhatsApp as app description?

I was fiddling with my router's uPnP settings and found this: Why is an external IP address showing here? I also did a reverse IP search and to my surprise the IP 25.54.27.39 showed "UK Ministry of Defence". I am not in the UK military or on a…
Bushara
  • 21
  • 1
2
votes
2 answers

Secure operation of IoT equipment?

In the light of recent events around Mirai not being the only IoT botnet, but being joined by IoTroop / IoT_reaper (see here and here ), I wondered what steps need to be taken to securely operate an IoT device. Obviously, just plugging the device…
1
vote
1 answer

How does my ipcamera work despite UPnP disabled on home router?

Recently I bought an IPcamera in order to test its security. Unfortunately, it just has 2 ports open : 554/tcp RTSP 5000/tcp UPnP I was pretty sure the ipcamera would poke my router and open up internet facing port (that's what UPnP is suppose to…
v1h5
  • 151
  • 8
1
vote
1 answer

How do you change the password of an IoT device like a DVR box?

The above picture is Brian Krebs responding with advice about protecting yourself from the IoT hacks. It's common advice given for protecting IoT devices from attacks like the Mirai botnet. My question is, what does it mean? Supposedly the…
WakeDemons3
  • 161
  • 1
  • 1
  • 3
0
votes
2 answers

What could re-enable uPnP on router apart from malware?

I'm the sole person who has access to this router. I turned uPnP off and have twice found it turned back on in recent weeks. The Router is Asus DSL-AC68U. I have a VPN running at the router level, installed about a month ago. I've recently updated…
frank
  • 101
  • 2
0
votes
0 answers

Whatsapp requests UPnP

What info is taken when WhatsApp requests UPnP? Is it hacked? What does it do with UPnP? I have checked many websites but the answer is the same, that UPnP is harmful. But I want full details about what info is taken from WhatsApp. What does it do…
Aahna
  • 1