Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for
Router accessible on tcp port 32764?
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Other forums
- :
- Tech Help - Software/Hardware etc
- :
- Router accessible on tcp port 32764?
Router accessible on tcp port 32764?
12-01-2014 9:43 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Backdoor access to a variety of routers: https://github.com/elvanderb/TCP-32764
Probably the "scfgmgr" process in my netgear dg834g v3, fortunately it's not accessible from the Internet on this router - although it might be with other routers. So doesn't actually make any difference to me as the debug telnet interface, with no login/pass, is open to the LAN anyway.
I should have spotted that sooner really, there's no netstat command in my netgear, but you can still "cat /proc/net/tcp"
[tt]# cat /proc/net/tcp
sl local_address rem_address st ... (various other columns omitted)
0: 00000000:0050 00000000:0000 0A ...
1: 00000000:0017 00000000:0000 0A ...
2: 00000000:7FFC 00000000:0000 0A ...
3: 0100A8C0:0017 6500A8C0:DE12 01 ...
4: 0100A8C0:0017 6500A8C0:AD2B 01 ...[/tt]
The port numbers there are in hexadecimal, 0x50 = 80 (the web interface), 0x17 = 23 (telnet access), and 0x7FFC is 32764.
Probably the "scfgmgr" process in my netgear dg834g v3, fortunately it's not accessible from the Internet on this router - although it might be with other routers. So doesn't actually make any difference to me as the debug telnet interface, with no login/pass, is open to the LAN anyway.
I should have spotted that sooner really, there's no netstat command in my netgear, but you can still "cat /proc/net/tcp"
[tt]# cat /proc/net/tcp
sl local_address rem_address st ... (various other columns omitted)
0: 00000000:0050 00000000:0000 0A ...
1: 00000000:0017 00000000:0000 0A ...
2: 00000000:7FFC 00000000:0000 0A ...
3: 0100A8C0:0017 6500A8C0:DE12 01 ...
4: 0100A8C0:0017 6500A8C0:AD2B 01 ...[/tt]
The port numbers there are in hexadecimal, 0x50 = 80 (the web interface), 0x17 = 23 (telnet access), and 0x7FFC is 32764.
7 REPLIES 7
Re: Router accessible on tcp port 32764?
31-12-2014 6:46 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Surprisingly, on 19 May 2014, Netgear even released some new firmware to fix the TCP port 32764 issue, even though the previous v3 firmware, 4.01.40, was released way back in 2009.
For the DG834Gv3, there's 4.01.42
For the DG834Gv4, there's 5.01.17
I think 4.01.42 for the v3 also contains a slightly later version of the DSL driver.
For the DG834Gv3, there's 4.01.42
For the DG834Gv4, there's 5.01.17
I think 4.01.42 for the v3 also contains a slightly later version of the DSL driver.
Re: Router accessible on tcp port 32764?
03-01-2015 9:04 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Has anyone used that firmware upgrade for the v3? I'm a bit reluctant to try it, especially given that Netgear doesn't list it in the main list of firmware upgrades at http://support.netgear.com/product/DG834Gv3.
Re: Router accessible on tcp port 32764?
03-01-2015 9:42 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
No I haven't installed it yet, especially as the security issue is a total non-issue for me anyway.
The "main list" of firmware versions on your link does list 4.01.41, which has exactly the same release note, but is a firmware version for the Annex B models.
The "main list" of firmware versions on your link does list 4.01.41, which has exactly the same release note, but is a firmware version for the Annex B models.
Re: Router accessible on tcp port 32764?
03-01-2015 9:52 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
4.01.412 is the one you should install.
Edit: Corrected
Edit: Corrected
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: Router accessible on tcp port 32764?
03-01-2015 10:09 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
4.01.42 is for the UK
4.01.41 is for Germany!
4.01.41 is for Germany!
Re: Router accessible on tcp port 32764?
03-01-2015 11:58 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Quote from: thejudge Has anyone used that firmware upgrade for the v3? I'm a bit reluctant to try it, especially given that Netgear doesn't list it in the main list of firmware upgrades at http://support.netgear.com/product/DG834Gv3.
Go to http://downloadcenter.netgear.com/other/ and search for the model (or click PRODUCT DRILLDOWN then select Product Category: Routers, Modems & Gateways; Product Family: DSL Modem Routers; then Product DG834Gv3). You'll find Firmware Version 4.01.42 (For users in UK only) is listed.
I'm guessing you didn't select Country as Other to get the UK versions listed.
jelv (a.k.a Spoon Whittler) Why I have left Plusnet (warning: long post!) Broadband: Andrews & Arnold Home::1 (FTTC 80/20) Line rental: Pulse 8 Home Line Rental (£14.40/month) Mobile: iD mobile (£4/month) |
Re: Router accessible on tcp port 32764?
05-01-2015 9:21 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Oh yes, I found it OK, I'm just wary of doing something as drastic as updating the firmware when I'm not sure that I need to, and without knowing if anyone else has had issues when they've done it.
Topic Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Other forums
- :
- Tech Help - Software/Hardware etc
- :
- Router accessible on tcp port 32764?