Firewalla vulnerable for "port shadow" vulnerability?
Is there anyone who can tell if Firewalla is vulnerable for the "port shadow" vulnerability as mentioned in the article below?
-
It's unlikely. This attack involves VPN users attacking other VPN users. Therefore, unless you give your wireguard VPN profile to a stranger, you should be fine.
Quoting from them:
"Our research reveals that using a VPN opens you up to similar attacks from other VPN users with whom you share your VPN server. In the same way that the WiFi radio signal is a shared resource that makes users vulnerable to attacks, there is a shared resource on VPN servers called a port (each connection through the VPN server is assigned to a port). By carefully crafting packets from within the attacker’s own connection to the VPN server and from a remote Internet location controlled by the attacker, it is possible to carry out attacks on other VPN users who are using the same VPN server in a manner that is very similar to the attacks that could be carried out on shared WiFi. "
Please sign in to leave a comment.
Comments
1 comment