Linked by Thom Holwerda on Sun 9th Apr 2006 12:49 UTC, submitted by rycamor
Legal FreeBSD developer Poul-Henning Kamp (PHK) happens to run a tier-1 NTP server, intended only for use by ISPs' main servers in Denmark, and specifically not intended for individual client connections, not to mention client connections from anywhere else in the world. He offers this service pro bono to ISPs. Unfortunately, D-Link has decided to abuse the open nature of the NTP protocol and has actually hard-coded PHK's server hostname in the firmware of several of their home network products. Since contacting D-Link yielded no results, PHK went public.
Permalink for comment 113522
To read all comments associated with this story, please click here.
NTP of Dead
by werfu on Mon 10th Apr 2006 20:06 UTC
werfu
Member since:
2005-09-15

Isn't there an exploit for the NTP protocol? If D-Link is using some kind of µLinux distro or something like that it could be easy to find an exploit that simply make all thoses routers explode right-away!

I mean.... setting the time to the limit of the protocol and see those routers jerk off or trying to buffer overflow those routers with oversized packets or badformed packets.

But the simpliest way would surely be to use another hostname and asking for cooperation from the danish ISP.

Damn D-Link sux arses....

Reply Score: 1