cancel
Showing results for 
Search instead for 
Did you mean: 

SmartZone-100 product has security vulnerabilities.Hackers can use udp9001 port to launch ddos reflection amplification attack

li_xiang
New Contributor

I am a security researcher from Baidu,Recently, we have detected a large number of hacking incidents from ddos attacks initiated on the UDP9001 port on the SmartZone-100 device. Great harm!!!

Refer to my screenshot for details.my phone number is 18903860673

My email address is 18903860673@163.com, I come from Baidu in China,Hope you guys get back to me as soon as possible,

Image_ images_messages_60e2e826343e2b0bb01b8590_219bd35fad14c5417a7d39494614700d_1-26b24858-5030-47b4-b43a-b44b450c4a75-46734060.png
Image_ images_messages_60e2e826343e2b0bb01b8590_f0303439659a2da30844ab8530b7fbb5_4-bf56df6d-8c4f-4824-a102-978858c41c8a-49504623.png
Image_ images_messages_60e2e826343e2b0bb01b8590_08d613990b078e9c2e92d2c3c5c6df48_5-37ecab71-5b48-4656-8707-bac7a4541638-50428144.png
13 REPLIES 13

Anonymous
Not applicable

@li_xiang, Yes, we have ES Service deployed on SZ. If you run "Show service" from CLI, should be able to see the status.

Regards,

Parikshith

@parikshith_nagaraj_aa0004  udp9001 is filebeat plugin???

@parikshith_nagaraj_aa0004 could you tell me the Software version of filebeat?

syamantakomer
Community Admin
Community Admin

Hi Li,

Our security team has been notified to review this.


Syamantak Omer
Sr.Staff TSE | CWNA | CCNA | RCWA | RASZA | RICXI
RUCKUS Networks, CommScope!
Follow me on LinkedIn

@syamantak_omer could you tell me 9001 is filebeat service???