Test ID:	1.3.6.1.4.1.25623.1.0.141956
Category:	Denial of Service
Title:	UBNT Discovery Protocol Amplification Attack
Summary:	A publicly accessible Ubiquity device exposing the UBNT; Discovery Protocol can be exploited to participate in a Distributed Denial of Service (DDoS); attack.
Description:	Summary: A publicly accessible Ubiquity device exposing the UBNT Discovery Protocol can be exploited to participate in a Distributed Denial of Service (DDoS) attack. Vulnerability Insight: There are reports that there are ongoing attacks against devices with UBNT Discovery Protocol reachable which either result in a loss of device management or are used as a weak DDoS amplificatior. The basic attack technique consists of an attacker sending a valid query request to a UBNT server with the source address spoofed to be the victim's address. Since UBNT Discovery Protocol uses UDP this is trivialy done. When the UBNT server sends the response, it is sent instead to the victim. Because the size of the response is typically considerably larger than the request, the attacker is able to amplify the volume of traffic directed at the victim (the amplification factor is around 30-35x). By leveraging a botnet to perform additional spoofed queries, an attacker can produce an overwhelming amount of traffic with little effort. Solution: Ubiquiti recommends to block port 10001/udp at the perimeter. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Copyright	Copyright (C) 2019 Greenbone Networks GmbH

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.