![]() ![]() When Plex discovers a UPnP gateway, it uses the NAT Port Mapping Protocol to implement dynamic NAT forwarding rules on the router. The system also employs Simple Service Discovery Protocol (SSDP) searches to track down Universal Plug, and Play (UPnP) gateways on broadband internet routers with SSDP enabled. ![]() ![]() Plex scans a local network using a protocol known as G’Day Mate (GDM) to locate other supported media devices and streaming clients as part of its regular operation. “Plex’s startup processes unintentionally expose a Plex UPnP-enabled service registration responder to the general Internet, where it can be abused to generate reflection/amplification DDoS attacks,” said Netscout researchers in a Thursday alert. The company’s alert warns owners of devices that ship with Plex Media Server, a web application for Windows, macOS, and Linux and variants customized for special-purpose platforms such as network-attached storage (NAS) devices and digital media players. Netscout reported that amplified PMSSDP DDoS attacks detected since November 2020 have been using UDP/32414 SSDP HTTP/U responses from exposed broadband Internet access routers and redirected towards attackers targets. On Wednesday Network monitoring firm Netscout published an alert warning of an exploit against Plex Media Server. DDoS-for-hire services have found a way to use Plex Media Servers as a UDP reflection/amplification vector in Distributed Denial of Service attacks. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |