Ubiquiti Possible Exploit - Losing access to SSH and HTTP/HTTPS on CPEs

 ( toMpEr | 2019. január 30., szerda - 21:11 )

Ha esetleg valakinek ilyen gondja lenne:

"Heads up! Ubiquiti networks devices are being remotely exploited, via port 10001 discovery service. Results in loss of device management, also being used as a weak UDP DDoS amplification attack: 56 bytes in, 206 bytes out. " - https://twitter.com/troutman/status/1090212243197870081

Jelenleg hivatalos álláspont:
"There has been some discussion lately about a bug in airOS which can result in management access to airOS devices becoming inoperable until these devices are rebooted. This issue appears to be caused by external access to airOS devices using port 10001. As a temporary workaround for this issue while it is being investigated and resolved by the development team, network operators can block port 10001 at the network perimeter.
 
To our current knowledge, this issue cannot be used to gain control of network devices or to create a DDoS attack. If this situation changes, this notice will be updated."

https://community.ubnt.com/t5/airMAX-General-Discussion/airOS-airMAX-and-management-access/td-p/2654023