D-Link Forums
The Graveyard - Products No Longer Supported => Routers / COVR => DIR-635 => Topic started by: Tinchote on June 04, 2015, 11:17:30 AM
-
This is not a fake scan. On my DIR 632, using tftp, I was able to read /etc/passwd and /etc/hosts, and to upload a file to; to make it worse, I was able to do this from outside the LAN.
-
Link>Welcome! (http://forums.dlink.com/index.php?topic=48135.0)
- What Hardware version is your router? Look at sticker under the router case.
- Link>What Firmware (http://forums.dlink.com/index.php?topic=47512.0) version is currently loaded? Found on the routers web page under status.
- What region are you located?
- Are you wired or wireless connected to the router?
-
Thanks. It's a DIR 632. hardware A1, firmware 1.01NA.
I'm in Canada. I'm accessing the router through the internet, I'm some 4km away from it; that's the scary thing, I don't mind if a port is opened towards the LAN, but this is opened wide to the world.
I run, on my console, "tftp my-router-ip GET /etc/passwd" and I was able to retrieve the file. I was also able to upload a file.
-
I recommend upgrading the routers FW and see if this issue is closed:
http://support.dlink.ca/ProductInfo.aspx?m=DIR-632 (http://support.dlink.ca/ProductInfo.aspx?m=DIR-632)
Please follow this for updating FW: Link> >FW Update Process (http://forums.dlink.com/index.php?topic=42457.0)
"This product has been discontinued.
Free support for this product has ended on 08/02/2014"
-
Thanks, I'll try that.
-
Let us know how it turns out.
-
So, I upgraded to the latest firmware (1.03) and port 69 UDP is still wide open. I tried to check some of the options to see where this could come from, but I came up empty; in particular, remote management is disabled.
-
There any programs like logging or other on the PC that could have this port open?
Is check up dates on the router enabled if there is this feature on this model router? Disable and check.