SingTel Backdoor Detection (ForgotDoor)
High Nessus Plugin ID 110271
SynopsisThe remote SingTel router has a backdoor.
DescriptionThe remote SingTel router may be contain a backdoor. Certain SingTel routers had their administrative web interfaces port-forwarded to public-facing addresses by customer support after users requested customer service. Depending on the configuration, the router may require no credentials, default credentials, or weak credentials to obtain administrative privileges.
A remote attacker can both control these devices and use them as a pivot to widen the attack surface to all connected devices.
SolutionDisable the port forwarding either manually or by contacting the vendor.