Universal Plug and Play (UPnP) Leaves 81 Million Routers Vunerable

Cincinnati CyberKnights can run this test for you (remotely or on site).  Contact us to get started.

Am I vulnerable? 

To test your system, use the Instant UPnP Exposure Test (click here).  This is a web based testing utility I have used for years.  Steve Gibson has added a specific test for UPnP.

What does it do?

The tool sends specific data packets to your WAN connection on your router and if it responds, then your router is open to this type of attack.  

How do I fix it?

You should try the following things in this order. After each change, run the testing tool at the GRC website to see if the problem is resolved.

  1.  Upgrade your router firmware.
  2. Disable UPnP.
  3. Create a DMZ to a fake IP on your network.
  4. Replace your router with our currently recommended router.

Why should I care?

Your router tracks requests going out and in of your network (at home or work).  Requests you did not ask for are blocked by default.  This vulnerability allows someone to snoop on your network and removes an entire layer of security.  This gives an attacker the ability to then attempt known exploits directly on any of your systems on your network.  

Questions or commends, please let use know!