Older Nas systems from WD, Netgear, Seagate




and Medion contain rce leaks
Two security researchers claim that they are able to take remote control systems from Western Digital, Netgear, Seagate and Medion remotely. There are no patches yet for the remote code execution leaks that make this possible.

According to the researchers , Paulos Yibelo and Daniel Eshetu, these are the My Book systems from WD, Netgear Stora, Seagate GoFlex Home and Medion LifeCloud. They do not state whether the vulnerabilities occur in a certain firmware version. In the case of the last three manufacturers, the vulnerabilities are related to leaks in the Hipserv software used by Axentra. These make it possible to execute code on a device remotely and to take it that way. In all cases, only knowledge of the IP address is required, the researchers claim.

Although it seems to be fairly old devices, according to TechCrunch there are still many connected to the internet. A Shodan search would point to more than 300,000 devices, while a ZoomEye search yields a number of 1.8 million devices. Only Western Digital responded to questions from the site, which could see the researchers’ analysis for publication. The company states that these are devices that were introduced in 2010 and for which support ended in 2014. The company’s advice is to place vulnerable devices behind a firewall.

The researchers recommend that affected users no longer keep the devices connected to the internet and only make them accessible via the local network. No patches have yet been made available. Although the researchers tell TechCrunch not to publish exploit for the vulnerabilities, it is often only a matter of time before leaks are attacked. The vulnerabilities identified by the researchers are indicated by CVE-2018-18471 and CVE-2018-18472.


In: A Technology & Gadgets Asked By: [23616 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »