Menu
What's new
By:
Filters Better Search

RT-AC88U vulnerabilities

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

H

hasarouter

Occasional Visitor
Hi,

I have an RT-AC88U, I've been seeing in the AiProtection logs like (I've cut out even offender's IP just in case without their knowledge their PC is controlled by someone else)

upload_2018-11-18_0-3-26.png
upload_2018-11-18_0-3-58.png


As these were blocked by trendmicro, I don't worry so much about these logs, it's rather that it looks like my ip range is actively being probed for vulnerabilities, either because that's how it is for everyone or my ISP has a less tight firewall or whatevs. It's more like the rate of the activity makes me worry about 0days or even Asus being slow to respond with patch or even just me being busy and not noticing there's urgency to patch (given that ASUS does not autoupdate)

I have set no external connections allowed so a service vulnerability probably isn't a worry. This leaves vulnerabilities in the TCP/IP stack or the firewall or or even Trend Micro. In the last few years, how common were these sort of vulnerabilities for Asus routers?
 
hasarouter said:
As these were blocked by trendmicro
Click to expand...

TrendMicro works...

It does alarm a bit, just to show it's doing the job like a good little puppy...

WAN is full of script kiddies and mass scanners these days - look at the services you have exposed, and consider the threat surface from there...
 
sfx2000 said:
TrendMicro works...

It does alarm a bit, just to show it's doing the job like a good little puppy...

WAN is full of script kiddies and mass scanners these days - look at the services you have exposed, and consider the threat surface from there...
Click to expand...

No services exposed but this doesn't mean I'm safe - eg TCP/IP stack vulnerabilities are exposed from time to time
 
hasarouter said:
No services exposed but this doesn't mean I'm safe - eg TCP/IP stack vulnerabilities are exposed from time to time
Click to expand...

NAT, the SPI firewall, and TrendMicro - as long as not exposing ports/services of the router itself, you're generally safe...

NAT - protects hosts due to private routing of the LAN clients
SPI - protects the router, and some services that might be forwarded
TrendMicro - takes a closer look and based on known profile/signatures, drops packets...

Asus tries to do a belt and suspenders approach to the gateway security in the default configuration with NAT/SPI, and TrendMicro helps out a bit...
 
You must log in or register to reply here.

Similar threads

visortgw
Release ASUS RT-AX68U Firmware version 3.0.0.4.388_24646 (2024/02/26)
Replies
19
Views
2K
Tech9
Tech9
escape75
RT-AX68U Merlin vs. 3.0.0.4.388_24646
Replies
0
Views
399
escape75
escape75
L
ASUS RT-AC88U Versione firmware 3.0.0.4.386_48263 (28/11/2023)
Replies
2
Views
636
Tech9
Tech9
xander73
Release ASUS RT-AX88U Pro Firmware version 3.0.0.6.102_32843 (2023-11-27)
2
Replies
35
Views
5K
VANT
VANT
D
Asus RT-AX3000 V2 Questions
Replies
7
Views
2K
Tech9
Tech9
Similar threads
Thread starter Title Forum Replies Date
M Adding AiMesh Nodes to RT-AC88U with Merlin firmware ASUS Wireless 4
A "nvram set preauth" is not working with Asus RT-AC88U? ASUS Wireless 1
R RT-AC88U having high CPU usage from ASD - also dnsmasq-dhcp[410]: failed to write /var/lib/misc/dnsmasq.leases: No space left on device ASUS Wireless 32
T Utilizing 3x RT-AC88U with my new ZenWiFi Pro ET12's ASUS Wireless 2
XIII ASUS urges customers to patch critical router vulnerabilities ASUS Wireless 48

Similar threads

Latest threads

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 801 (members: 19, guests: 782)
Top