Cable Haunt Vulnerability | docsis.org

You are here

Cable Haunt Vulnerability

5 posts / 0 new
Last post
windwaterwaves
Cable Haunt Vulnerability

Have any of you prepped or read up on the cable haunt vulnerability? It has to be executed from behind the cable modem but there is a pretty good article here

https://www.databreachtoday.com/cable-haunt-modem-flaw-leaves-200-millio...

mbowe
Yes this looks like a pretty

Yes this looks like a pretty big problem

I think many Broadcom modems are going to be vulnerable

We are running on tests against our fleet now

mbowe
I approached one of our

I approached one of our vendors, and they advised BCM is aware of the issue and has released solution already

So I guess each vendor needs to take that BCM patch and release an updated firmware

Then each ISP has to download and deploy that updated firmware

windwaterwaves
Ya I don't have a firmware

Ya I don't have a firmware deployment set up. We just use what we get.

windwaterwaves
The good news is the client

The good news is the client needs to get compromised first but with all of the malware that people get it could be pretty bad.