Cable Forum

Cable Forum (https://www.cableforum.uk/board/index.php)
-   Security & Virus Discussion (https://www.cableforum.uk/board/forumdisplay.php?f=38)
-   -   Got a QNAP NAS? Disconnect it from the Internet (ShellShock) (https://www.cableforum.uk/board/showthread.php?t=33698948)

Qtx 02-10-2014 18:12
Got a QNAP NAS? Disconnect it from the Internet (ShellShock)
 
Deserves it's own thread as so many have these. Pretty much all QNAP network storage devices are vulnerable to the bash/shellshock security issue and attacks have been seen exploiting it. If you have one and it's connectable from the internet...disconnect it until Qnap release a patch.

http://www.fireeye.com/blog/technica...istrators.html

Quote:
This particular attack, on a popular brand of network attached storage devices, is an excellent example of the type of threat currently facing devices that run an embedded Linux operating system. As stated on the manufacturer’s website:

“QNAP Inc. is the worldwide leading storage system provider who is one of the top 2 NAS provider in the sub $5k business segment according to Gartner Research Group in 2010. The product line covers NAS, NVR video surveillance, and network media players to consumer, small/medium business, and enterprise market segments.”

Virtually all of their devices run an embedded Linux OS that is vulnerable to CVE-2014-6271 if left unpatched. This includes personal and business network storage as well as professional video surveillance systems used in a variety of industries. This vulnerability is particularly severe because it grants root privileges to the attacker, and proof of concept exploit code is publicly discussed here.
POC curl command that gives full control to run commands


All times are GMT. The time now is 11:19.

Powered by vBulletin® Version 3.8.11
Copyright ©2000 - 2026, vBulletin Solutions Inc.
All Posts and Content are © Cable Forum