After loading the 1.42.3 firmware on my linksys I see this i - 02/17/02 02:45 PM
02/17/2002 04:28:37 Allowed UDP Incoming 239.255.255.250 1900 192.168.1.1 1901 10 02/17/2002 04:28:23 02/17/2002 04:28:23
Now I have thousands of these in my logs... So I did a little research.
http://www.ietf.org/rfc/rfc2365.txt
http://www.security-express.com/archives/vuln-dev/2000-q3/0729.html
http://www.nthelp.com/upnpscrewup.htm
Now my question is what do I do about it... I have the firewall blocking it but the router seems to be forwarding the data... I do not want to disable the UPnP on the router as some of my online software finally works without having to setup forwarding.
Anyway does this seem like a security flaw to anyone else?
Now I have thousands of these in my logs... So I did a little research.
http://www.ietf.org/rfc/rfc2365.txt
http://www.security-express.com/archives/vuln-dev/2000-q3/0729.html
http://www.nthelp.com/upnpscrewup.htm
Now my question is what do I do about it... I have the firewall blocking it but the router seems to be forwarding the data... I do not want to disable the UPnP on the router as some of my online software finally works without having to setup forwarding.
Anyway does this seem like a security flaw to anyone else?