“Hello, I’m a VxWorks device. Would you like to own me?”

There’s a server lurking on your home network if you’ve got an Internet-connected box like, say, a Sony Bluray player:

A recent report describes a critical and widespread vulnerability in electronics running VxWorks, an embedded real-time operating system (RTOS). Examples of affected devices include DSL concentrators, SCADA industrial automation systems, D-Link video conferencing systems, fibre channel switches, and Apple Airport Extreme wifi routers. The problem: a back-door diagnostic communications port provided by VxWorks.
http://www.embedded.com/electronics-blogs/davek-security-blog/4205117/-VxWorks-device-like-to-own-me-

Now, the above is from 2010. It poses an interesting challenge: how many vulnerable devices are waiting in people’s homes now in 2013?

————-

Leave a Reply