generating a specific malicious HTTP request. This enabled attackers to control a UPnP-enabled router when a user visited a malicious website that exploited the security vulnerability.
The purpose of UPnP is to make devices on a network easily discoverable by other devices in the network. This can expose UPnP control interfaces to the public internet and allow malicious users to find and gain access to the network. In 2011, a researcher named Daniel Garcia developed a tool that could exploit a security vulnerability present in UPnP IGD device stacks to allow the UPnP-enabled device to accept requests from the internet. It even allowed port mapping requests to external IP addresses from the device and internal IP addresses behind the NAT. The problem became widely known, and scans showed millions of devices to be vulnerable at that time.
So, it is always better to disable UPnP on your device unless you must use it. Exploiting UPnP-enabled devices like routers can cost heavily.
So, disable UPnP on your devices, and stay safe and secure. Interested readers who want to know more about how different malware and cyberattacks work and how we can prevent them may want to refer to the book A Guide To Cyber Security.






0 Comments