Windows 7: Hacker pierces hardware firewalls with web page.

JMH · 07 Jan 2010

Quote:

On Tuesday, hacker Samy Kamkar demonstrated a way to identify a browser's geographical location by exploiting weaknesses in many WiFi routers. Now, he's back with a simple method to penetrate hardware firewalls using little more than some javascript embedded in a webpage.
By luring victims to a malicious link, the attacker can access virtually any service on their machine, even when it's behind certain routers that automatically block it to the outside world. The method has been tested on a Belkin N1 Vision Wireless router, and Kamkar says he suspects other devices are also vulnerable.

More -
Hacker pierces hardware firewalls with web page ? The Register

brady · 07 Jan 2010

"By luring victims to a malicious link, the attacker can access virtually any service on their machine, even when it's behind certain routers that automatically block it to the outside world" This is not an intrusion or a "piercing" of anything. Firewalls are setup to talk back. This firewall rule didn't include an IRC block. He didn't bypass a single rule on the firewall, simply used the current rules in his favor. this is the equivalent of inviting a robber into your house...

IggyAZ · 07 Jan 2010

Keeps our economy going. Upgrade your router to a new and improved model until this happens again and you have to buy another one.

nate42nd · 07 Jan 2010

This makes me wonder what 3rd party firmware on a router would do with this sort of attack. I am using DD-WRT firmware right now. I wonder if this makes my router more or less secure...

Windows 7: Hacker pierces hardware firewalls with web page.

Hacker pierces hardware firewalls with web page. problems?