Menu
Reply
miXry8-moqrek-k
  • 34
  • 0
  • 0
On our wavelength
1,209 Views
Message 1 of 15
Flag for a moderator

Multicast DNS vulnerability

Please can someone give me a step by step guide what I have to do about the Multicast Vulnerability alert.

 

i believe I have to close port 5353.

 

i did this about a year ago (can’t remember how I did it) but now received another letter.

 

thanks 

0 Kudos
Reply
DJ_Shadow1966
  • 6.85K
  • 1.31K
  • 1.89K
Very Insightful Person
Very Insightful Person
1,198 Views
Message 2 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Hello

The instructions to resolve this are here https://www.virginmedia.com/help/multicast-dns-vulnerability-alert

Mike

I'm a Very Insightful Person, I'm here to share knowledge, I don't work for Virgin Media. Learn more

Have I helped? Click Mark as Helpful Answer or use Kudos to say thanks

0 Kudos
Reply
miXry8-moqrek-k
  • 34
  • 0
  • 0
On our wavelength
1,161 Views
Message 3 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Humour me on this.

 

i have a multicast DNS vulnerability.

i am trying to follow the steps given regarding port 5353, but haven’t got a clue.’

my first question is how do I know which an unused IP address is?

 

second question, when I go into the advanced settings on the port forwarding tab, I have a rule previously created (from a previous vulnerability letter) 

it reads across like this:

name. Mdns

port range 5353

protocol UDP

an up address on here

and a tick in the enable box.

 

it won’t let me add rule as I need to put something in the IP address, is this where I need to put in an unused IP address?

if someone could advise me (also an address to put in there I would be grateful)

 

I really need a simple step by step explanation to this.

 

TIA

0 Kudos
Reply
richard_s1
  • 67
  • 0
  • 0
Tuning in
830 Views
Message 4 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Dear Virgin media I have had an email and now a letter Your Reference VMIS51-MDNS-F007932204. I know the ports were open I had opened them to do some server testing. I run Linux and the server in question was in a DMZ. None of my important machines was in any danger. Am I going to get letters and emails every time I open ports? Which I will be doing in the near future. I would like to have my own more secure router instead of your hub, But I dont think that is possible.

Richard

0 Kudos
Reply
Chris_W1
  • 4.05K
  • 181
  • 252
Forum Team
Forum Team
829 Views
Message 5 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

The letters would come from the internet security team and should have all the information you need on the letter. ^Chris

0 Kudos
Reply
richard_s1
  • 67
  • 0
  • 0
Tuning in
828 Views
Message 6 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Guess they will be sending me a lot of letters soon as I start testing again.

 

Richard

0 Kudos
Reply
Chris_W1
  • 4.05K
  • 181
  • 252
Forum Team
Forum Team
825 Views
Message 7 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

If another infringement is found then you would get another letter yes. ^Chris

0 Kudos
Reply
richard_s1
  • 67
  • 0
  • 0
Tuning in
821 Views
Message 8 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Why is it an infringement Chris? Am I not allowed to test a server????

Richard

0 Kudos
Reply
Megan_L
  • 2.37K
  • 146
  • 235
Forum Team
Forum Team
807 Views
Message 9 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Hi Richard, 

Thanks your your patience with this issue. You can find out more information about this by emailing our security team at InternetSecurity@virginmedia.co.uk. They will be able to help further.
Thanks,

Megan_L

0 Kudos
Reply
richard_s1
  • 67
  • 0
  • 0
Tuning in
806 Views
Message 10 of 15
Flag for a moderator

Re: Multicast DNS vulnerability

Thanks Megan, The letter came with no contact details.

Richard
0 Kudos
Reply