Avast WEBforum
Consumer Products => Avast Free Antivirus / Premium Security (legacy Pro Antivirus, Internet Security, Premier) => Topic started by: N@URINE on October 26, 2014, 05:02:58 PM
-
hello,
After upgrading to Avast Internet Security 2015 10..., I scanned my network and received this message:
what shall I do now?
-
Which is your router manufacturer and model?
-
TP-Link (TD-W8961ND 300Mbps Wireless N ADSL2+ Modem Router). V2.1
-
According to avast info.....upgrade firmware on router
-
ok, I'll try
-
http://www.tp-link.us/products/details/?categoryid=219&model=TD-W8961ND#down
-
I couldn't upgrade the firmware. The steps go well, but after the restart I found all the same.
Don't you think that it something that has to do settings? because Avast specifies "rom-0" and this is a name of a file that the router saves by default when I want to save my router's settings.
-
Rom-0 is a vulnerability. You'll find more if you Google it.
But, indeed, upgrade the firmware is the most common way to solve it.
-
You may want to get a new modem via your ISP. Some ISP companies they provide free upgrade to their latest modem. When a particular modem is around 5-10 years old they give you a new modem free of charge which is delivered straight to your home via courier. Currently my modem is around 5 years old and even though my avast home network detects that my router and wireless settings is protected and updated I may plan to get a new modem very soon!
-
Hi, if upgrading the firmware is really not an option for you, at least you should ensure that your router interface is never accessible from the outside (the net). Otherwise an attacker can really easily download the snapshot of your router's memory and after decryption it shows your admin password.
I've also seen suggestions to forward your port 80 (from outside) to some not-existing IP as a prevention of this attack. I guess this is for routers where you are unable to ensure it's not accessible from WAN.
-
I don't know a lot about router's security.
All I did is hiding my SID, with a long strong password, and setting the mac addresses which are allowed to access, but that don't seem to be enough!
-
I don't know a lot about router's security.
All I did is hiding my SID, with a long strong password, and setting the mac addresses which are allowed to access, but that don't seem to be enough!
Best defense from hackers is to upgrade to the latest firmware or ask your ISP to give you an upgraded router/modem! No matter how strong you make your new password it won't do good. Router also needs to be upgraded after many years. If you are not uncomfortable upgrading to the latest firmware to the latest version by yourself give your ISP a call to guide you through via phone conversation or ask them to give you a new router/modem.
-
Some ISP update routers remotely ...... if it is a router you got from your ISP
-
I was able to upgrade my firmware to the latest one, but Avast still display the same message.
-
I was able to upgrade my firmware to the latest one, but Avast still display the same message.
Just guessing but not all the upgrades solve the issues, maybe they still there, in the new firmware...
-
I got the same result for my laptop which runs Windows 7 and is connected to the router wirelessly. The desktop that's running XP and is connected wirlessly passed with flying colors however. But then Windows 7 being better and more secure likely sees the vulnerability and XP doesn't.
I do have a slightly older modem/router and plan on upgrading.
Anyhow, just wanted to let you know you aren't alone. Just remember you have to change the settings in the router/modem. And change it to a more secure setting. Like WPA-2 or WPA-PSK/ Then remember you have to change everything connected to it to the same thing. At least that's how it was explained to me and unless I misunderstood something. But it's why if I have to do that, I'm going to get a new model.router and not have to worry about it. And thay is only if I keep Avast and don't ask for a REFUND because of another issue that I can't seem to get resolved.
Good luck.
-
And thay is only if I keep Avast and don't ask for a REFUND because of another issue that I can't seem to get resolved.
Hi Sorzy, I'm sorry for your problems with avast, that make you think about refunds - but the detected ROM0 router vulnerability is there (on your router) with avast or not. It is ok for avast or for us here at Avast company if you know your router is vulnerable and choose to ignore it. Or maybe ignore it just for this moment, or don't ignore it at all and double check your router is not accessible from the net, and your Wifi is secured properly, so that the attack surface for this vulnerability is the smallest possible. What is also recommended is always use Sign-out button when leaving your router interface (not just closing the browser), so that Cross-Site scripting/request forgery is less possible.
Just wanted to let you have the information - thats why we added the feature, it's up to you.
Cheers,
Lukas.
-
Thanks Lukor.
-
Thank you Sorzy, this can interest you, too: I was told that there was security problem and it solved with the latest firmware, and there's also a way on how to fix it. it has to do with remotely access function:
take a look : http://www.tp-link.com/en/article/?faqid=569
-
And thay is only if I keep Avast and don't ask for a REFUND because of another issue that I can't seem to get resolved.
Hi Sorzy, I'm sorry for your problems with avast, that make you think about refunds - but the detected ROM0 router vulnerability is there (on your router) with avast or not. It is ok for avast or for us here at Avast company if you know your router is vulnerable and choose to ignore it. Or maybe ignore it just for this moment, or don't ignore it at all and double check your router is not accessible from the net, and your Wifi is secured properly, so that the attack surface for this vulnerability is the smallest possible. What is also recommended is always use Sign-out button when leaving your router interface (not just closing the browser), so that Cross-Site scripting/request forgery is less possible.
Just wanted to let you have the information - thats why we added the feature, it's up to you.
Cheers,
Lukas.
Don't get me wrong, I like that feature. The scan your network feature that is. It brought something to my attention I wasn't aware of let alone thinking of. Or even concerned with. When I looked into it, I saw how I'm connected is an older less secure way as newer better encrypted options have become available in recent/past years.
And also don't get me wrong as far as the refund consideration. I like Avast and why I've had it for the past 3 years for 3 pc's. But because I've been dealing with a problem, that for some strange reason, no one else seems to have, having or dealing with, I'm just very frustrated and fed up. I like Avast and what it has to offer. A little bummed that what I had/got with last years subscription (automatic software updater), is now part of the newer version and extra money.
If I could only get the problem, of a specific website not opening properly, resolved, I wouldn't want a refund. I mean, the problem I'm having with this particular website started back last year when Avast upgraded to version 2014. So, for slightly more then a year I've been dealing with this and having to disable all webshields just to get this website to open and work properly. And no one, no system should have to do or have that done just to get a website to open properly. Those things I have to disable are their to protect me, or rather, my computers.
Anyhow, as I said, there's a lot I like with and about Avast. But this one thing, this one irritation, for me, is over-riding all the good about it.