Menu
Reply
  • 4
  • 0
  • 0
Joining in
1,149 Views
Message 1 of 10
Flag for a moderator

Broadcom Vulnerability

I just received an email  from ZDNet  which contained this link https://www.zdnet.com/article/hundreds-of-millions-of-cable-modems-are-vulnerable-to-new-cable-haunt... and was wondering how vulnerable Virgin equipment is

0 Kudos
Reply
Highlighted
  • 13.68K
  • 617
  • 1.7K
Alessandro Volta
1,145 Views
Message 2 of 10
Flag for a moderator
Helpful Answer

Re: Broadcom Vulnerability

Hub 3 is Intel Puma chipset not Broadcom


*****
If you think my answer has helped - please provide me with a Kudos rating and mark as Helpful Answer!!
I do not work for Virgin Media - all opinions expressed are of my own and all answers are provided from my own and past experiences.
Office 365, Dynamics CRM and Cloud Computing Jedi
Highlighted
  • 4
  • 0
  • 0
Joining in
1,112 Views
Message 3 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Thank you.  I was worried that me modem was vulnerable.

0 Kudos
Reply
Highlighted
  • 9
  • 0
  • 0
Joining in
1,043 Views
Message 4 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Is the SuperHub 2ac vulnerable?

0 Kudos
Reply
Highlighted
  • 13.22K
  • 523
  • 1.21K
Alessandro Volta
1,025 Views
Message 5 of 10
Flag for a moderator

Re: Broadcom Vulnerability


@DerekWoodview wrote:

Is the SuperHub 2ac vulnerable?


No

This vulnerability looks like someone has the remotely be on your LAN to change settings.

The super hub 1 is Broadcom but if its in modem mode with a password its likely safe even in router mode you can't change the DNS.

Its likely VM on all hubs go to the extreme of ripping out code and starting over for the hubs not to be vulnerable to attacks.

0 Kudos
Reply
Highlighted
  • 9
  • 0
  • 0
Joining in
982 Views
Message 6 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Hi Alessandro, thanks for the reply.

However, this vulnerability does not require someone to be on the LAN. According to this article in "The Register" :-
https://www.theregister.co.uk/2020/01/10/broadcom_cable_haunt_vulnerability/

QUOTE>>>
a victim is tricked into opening a webpage or similar containing malicious JavaScript. This code subsequently connects to the web server built into the vulnerable modem on the local network. The script then alters the contents of the modem's processor registers, by overwriting the stack, to redirect execution to malware smuggled in with the request.



the vulnerability affects cable modems using chipset designer Broadcom's software running on the open-source Embedded Configurable Operating System (eCos)



the vulnerability originated in [Broadcom's] reference software, which have seemingly been copied by different cable modems manufacturers, when creating their cable modem firmware,

<<<

So, which VM routers are Broadcom chipset based?
Could VM issue a list of their cable modem versions that are vulnerable?


Best
Derek
0 Kudos
Reply
Highlighted
  • 137
  • 8
  • 33
Up to speed
967 Views
Message 7 of 10
Flag for a moderator

Re: Broadcom Vulnerability

While there are certainly people here who can answer your questions you need to appreciate certain realities.

Firstly, VM tends to take existing devices from 'decent' manufacturers, and then often re-write it entirely . . Often this is the cause of so many posts here, especially historically on older models. There are plenty of tiny pc's on ebay, often adapted and refurbished windows terminals on ebay which can be easily installed with a firewall/router package like Pfsense or similar.

Follow this route and you get high end security and many more useful functions, like built-in vpns, and the like.

This is a complex subject, but being secure beyond a certain level tends to need one being better informed.

 

Secondly, many vulnerabilities are 'known' long before they're published. This gives manufacturers time to provide and for resellers to release patches. This varies, I admit, but a good example, if rather different, is where Microsoft publishes its monthly Windows update code to large corporate customers a week before us 'unwashed masses' see them to allow time for testing in widely varying environments.

News sites, as with newspapers need exciting or perhaps shocking stories to bring in advertising and readers. There are many such vulnerabilities out there, and few have actually been exploited in the real world. For one, what value is there in messing with your router settings?

Of course some are, especially where users or companies persist in using outdated operating systems, such as Windows 7 (or worse) and examples of ransom ware attacks, especially on the NHS, tend to highlight this.

Ultimately, keep your pc patched, reboot when prompted, and install good antivirus and Firewall software. Nowadays, the latter prevents nasty code leaving your pc, not just getting in. Consider placing your hub in bridge/modem mode and use a decent router or better still an old multi-interface pc running a Linux based firewall in its place.

Basic security is common sense. If you know enough to justifiably be worried by such stories, you probably know enough to take better precautions.

AndyBundy
-----------------
I don't work for VM. I am medically 'retired' after working for a large multi-national Telco and have spent fifteen years in WAN/LAN IP Networking, Network Management and IT Support.
0 Kudos
Reply
Highlighted
  • 9
  • 0
  • 0
Joining in
923 Views
Message 8 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Hi Andy, and thanks for the reply.

Thanks also for the advice to use a third party security device to protect my LAN, which I already do. So I think (NEVER know for sure ☹ ), that my internal LAN is quite well protected.
I agree that vulnerabilities are known about by major manufacturers well in advance of publication. This has been the case with this vulnerability but this site…
https://cablehaunt.com/
has now published its proof of concept for an attack into the wild, together with the full technical report and test script.
The news site “The Reg” is only one of the sites carrying this story, others include Zdnet, SecurityWeek Forbs and others so it’s not just an exciting headline in a backwater publication.

Also, patching and updating your PC will not protect you from this attack as it’s implemented as a Man-In-The-Middle exploit in the router not the PC so all UNENCRYPTED traffic between the LAN and the outside world is potentially compromised.

So, back to the main question.
Which VM routers are Broadcom chipset based?
Could VM issue a list of their cable modem versions that are vulnerable?

Thanks again for the reply,
Derek





0 Kudos
Reply
Highlighted
  • 7K
  • 238
  • 1.39K
Community Lead
Community Lead
245 Views
Message 9 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Hi all,

As you’d expect, we regularly test our equipment in light of new security developments. Following further investigation we can confirm that we are not exposed to these issues on our product portfolio.

Kev

The do's and don'ts. Keep the community welcoming for all. Follow the house rules


Highlighted
  • 9
  • 0
  • 0
Joining in
169 Views
Message 10 of 10
Flag for a moderator

Re: Broadcom Vulnerability

Thanks Kev.
0 Kudos
Reply