Reply
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
Netgear router software allows for exfil of secret data when system is 'blocked' from access control
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2022-08-08
10:30 PM
2022-08-08
10:30 PM
Netgear router software allows for exfil of secret data when system is 'blocked' from access control
Putting a connected device in 'blocked' mode by using access control still allows for secret data to be exfiltrated out of the device and onto the WAN by using UDP protocol. Apparently the "blocked" status only applies to TCP.
Message 1 of 2
Labels:
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
2022-08-08
10:41 PM
2022-08-08
10:41 PM
Re: Netgear router software allows for exfil of secret data when system is 'blocked' from access con
I've tested this on a NetGear R7000 and a nighthawk AX6. Devices that stream via UDP can still push to a listener on the internet even though the device is 'blocked' via access control. Only when i Block a service "UDP -ALL" does UDP get blocked.
Message 2 of 2
Announcements
• What is the difference between WiFi 6 and WiFi 7?
• Yes! WiFi 7 is backwards compatible with other Wifi devices? Learn more