Skip to main content

Precautions For ROM-0 Router Vulnerability To Hack Access

If you are still using older versions of Small Office Home Office devices for your home or office, it is the high time to consider updating them. A common vulnerability found on SOHO routers and Gateways (unfortunately even on the models which are still in market) called ROM-0 vulnerability which lets an external intruder to hack in to your network router /gateway partially or even fully and gain control of it. If you have installed the lasted version of Avast on your computer, it feature 'Home Network Security scanner' will tell you whether your Gateway is affected with ROM-0 vulnerability. This article is intended to inform you about one of the common network vulnerability which is utilized by hackers to gain access to router, ROM-0, what is ROM-0 vulnerability and how to prevent your router from it.


What is ROM-0 vulnerability

ROM-0 vulnerability allows attacker to request ROM-0 through HTTP port. Which means if the port 80 is open on your device, a hacker can go in to the page " http://192.168.1.1/ROM-0" using this bug. Since port 80 is open by default, you must be very careful. Once the attacker gained access, he can download the username/password combination.


Router Models Vulnerable to ROM-0 vulnerability

I think it is better tell you the common point in all router models which are vulnerable than list the entire model numbers and manufactures. It is wise to say that all older versions irrespective of manufacture are under this category. If you are using a device which is not having the latest firmware, that device has the potential to be a victim. It does not exclude any specific models of Linksys, D-link, Netgear etc. If any router firmware is not longer updated by the manufacturer, it is wise to replace them immediately with a secure model. So before making your mind to purchase a gateway or router, you must check whether this router model is free from ROM-0 bug.


Have a look at the scan report which discovers the hidden vulnerability.




How to Fix ROM-0 vulnerability

The perfect solution is to replace your obsolete device with a latest model. However, if you are not in a position to spend money for it, you can try following solutions.

  1. Update your Router's firmware with the latest available version.

  2. Disable Remote Access on your device

  3. Since it is port 80 vulnerability, use a different non using private IP number to start using HTTP traffic.

  4. Use port forwarding to continue get the HTTP traffic, by using a non using Private IP address and forward port 80 to it.

  5. By blocking access to your router via external ports, Your router is safe


Related Tutorials

  1. Make Sure Your Network is SAfe

  2. Broadband Hack

  3. How to Prevent DOS Attack
No: Recent Posts
Broadband Hack Tricks
Network Address Translation( NAT)
What is Smurf Attack & How to Prevent it
How to Setup MTNL Broadband ADSL Modem
Setup Idea 4G on Android Phone
Delete Beneficiary Fund Transfer in HDFC Netbanking
Setup Asianet WiFi Router
Denial of Service (DOS) attacks
View & Clear Saved Username and Passwords In Mozilla Firefox
Setup Log Files for IP Messenger
Make Sure your Computer and Network are Safe and Secure
Omiga Plus Browser Infection Removal Guide
Error 797: A Connection to the Remote Access Server was not Made
How to Reset BSNL WiFi Modem
How to Check Your Tata Photon Plus Internet Usage
Destination Net Unreachable

Comments

Recent Posts

How to Configure Idea 3G on Android Phone

When you activate Idea GPRS or 3G Internet on your Android phone, your phone will receive the automatic settings. However, sometimes you may need to configure the Access Point and GPRS settings for Idea (both GSM second and third generation) connection manually on your Android phone. In case if you delete the previous configuration, it is better know how to setup the same settings again by yourself. A wrong Access Point Name can stop you from accessing their mobile broadband service. Otherwise after deleting the existing APN for Idea 3G or GPRS you may need to re-insert the SIM again to get automatic settings from them. If you know the manual configuration steps, you can avoid that hardware procedure. If you are looking for the steps to get maximum speed from Idea 4G, you may click the link below and follow the instructions. The below hack will increase the Idea 4G data transfer speed.


Boost Idea 4G Data Transfer Speed

Steps to Configure Idea 2G/ GPRS/ 3G in Android Click on Applicatio…

Village Field Assistant in Kerala Revenue (123/2017) Examination

PSC has notified examination for the post Village Field Assistant in Kerala Revenue Department. Category number of the notification is 123/2017. According to this notification, anyone who has passed 10th Standard and having cycling skill can apply. There is no ineligibility for those having higher education standards to apply for Village Field Assistant. So, those who passed HSS, Degree etc can apply. Village Field Assistant is the new name given to the post Village Man in Kerala Revenue Department and is one of the few posts where PSC conducts direct recruitment to Revenue department. Public Service Commission conducts different examinations for each districts and there will be different question papers and cut off marks. Anyone who apply for Village Field Assistant can apply to only one district. Right now, only anticipatory vacancies are reported. So we do not know the exact number of vacancies in each districts. According to High Court verdict in 2006, women too can apply to Vil…

LD Clerk in Kerala Government Department Exam 414/2016 Date & Syllabus

Getting a government job in India is a dream of millions of educated youth. Getting a group A service is a bit difficult and needs a lot of time for preparation and hard work. For those who have passed SSLC (10 th standard), the best choice to enter government service is LDC. Lower Division Clerk (LDC) exam by Kerala PSC opens door for thousands of youth to Kerala Government service. Right now everyone is eagerly waiting for the Kerala LDC 2016 exam notification. LDC is a group C service which allows a person to work in his district. In most cases he will get the chance to work near his home. It is because Kerala LDC exam is a district wise examination. Different districts have different exams and rank lists. Once selected for LDC you are in group C service.

Kerala PSC has invited applications for LDC in various Kerala Government Departments for those having minimum SSLC or equivalent qualification. According to the gazette number 414/2016, you can apply for LD Clerk post in various g…

How to Reset BSNL Modem to Factory Default Settings

This article is for those who want to reset BSNL modem to factory default settings. If you forgot the username and password set for BSNL modem, you might need to change it to factory default and reconfigure it. Another reason to do is to fix certain network connectivity issues. There are two different methods to reset a BSNL modem to factory settings. They are soft and hardware reset. In soft reset we should login to the BSNL modem configuration page and select the option restore default or factory default. If you forgot the modem username and password, you cannot perform this procedure because without logon details you cannot access settings page. In that case only option left is to perform a hard reset. In this tutorial you will see both methods irrespective of the modem vendor and version.

Soft Reset BSNL Broadband Modem
Login
Type 192.168.1.1 on the address bar of your browser and press enter


Enter admin as username and password
Click on Admin tab

Click on Reboot


Select the factory se…

Eligibility and Exam Pattern CBI Officer Recruitment 2017 - Sub Inspector By SSC CGL

To become an officer in Central Bureau of Investigation ( CBI ) is a dream of many youth in India. Though this elite investigation agency is popular among public, many do not know the procedure to join CBI as an officer. This article explains the various criteria, eligibility, exam pattern and procedure to become a CBI officer. Two different agencies conduct examinations to fill vacancies in CBI. They are UPSC and SSC. To become a group A officer in CBI, you must choose Civil Service Examination conducted by UPSC and become an IPS officer. To join as Sub Inspector in CBI, you must go through SSC CGL examination.

Name Of the Post Recruitment Agency Group A OfficerUPSC (Civil Service Examination)Sub InspectorSSC CGL
Where to Apply
If you are dreaming to become an Officer in CBI, you must pass the Combined Graduate Level Examination (CGL ) conducted by Staff Selection Commission (SSC) in every year. You must wait for the next SSC CGL notification and prepare for the same. It is a 4 tier…

List Of Free Proxy Software and Web Proxy Servers To Browse Anonymously

Proxy server is a middle man acting between your computer and the web server. For example if you are accessing Google from your computer using a proxy named X, your computer is not receiving information directly from Google but X is receiving services and send it back to your computer. So naturally the web server does not know your computer and it thinks it served X. So by using a proxy server, theoretically you can browse anonymously and also help you to bypass firewall restrictions too. This guide gives a short introduction of Proxy Servers with a number of popular server addresses. There are two types of Proxy services.
client based (Software Installed on your PC)

Web based proxy servers (No is software installed on your PC) If you are expecting high anonymity, you must go for premium servers but for normal users web based proxy server is enough. Here I give a list of free popular servers.

1. Client Based

Please note that some proxy software products might contain malware and use…