Hi, I have Avast antivirus on my Mac which has home network scan. It has reported that my Telstra gateway 5355 firmware version 8a.58.116.11 software version SG7E10001134 is vulnerable to hacker attacks ( CVE-2017-14491 ) and a firmware update could fix it. I believe Telstra update the firmware automatically when required. I would appreciate if any one has any idea why this occurring and if there is a fix. This modem was replaced by Telstra a few months ago when I had a problem with the old one. I think this is the first scan I have done on it since obtaining it.I have had no other issues with it. I did reboot the modem the other day in order to get the Telstra update for more speed.
Solved! Go to Solution.
Was this helpful?
Avast is throwing a false positive
The Sagemcom 5355 got a firmware update in November/December (SG7E10001122) to plug the dnsmasq vulnerability (dnsmasq version 2.78)
If you check their forums, they even advise that is an advisory warning based on a banner check and their software doesn't actually do an exploit probe
Type this into command prompt (in windows) and post the result:
nslookup -type=txt -class=chaos version.bind 10.0.0.138
@mazinoz Optus doesn't use the DJA0230 It's a Telstra exclusive
http://10.0.0.138 > Advanced > Gateway Settings > Device Info > General
Hi Guys, Just an update regarding the Gateway Fast 5355A being vulnerable to hackers CVE-2017-14491. I thought I would look into this further. I reset my modem and my modem firmware updated to SG7E 10001214 and still had the report from the security network scan same problem. I contacted Telstra that said there is nothing else they can do. I then contacted Avast, who I must say were very helpful . Why has Telstra sent me a modem that has this problem. Hopefully the following report from Avast will benefit others. Cheers John.
From Avast support team.
It seems that your device is indeed vulnerable but update addressing the vulnerability is not yet available for your device.
You can, however, minimize risks imposed by the vulnerability by securing your router with a strong password. Here you can test if a password is strong enough: https://www.avast.com/f-password-manager#passwords
Once you set a strong password, there's nothing to worry about.
In this article, you can learn more about this problem: https://help.avast.com/en/av_free/17/hns/cve-2017-14491.html
Let me know if you have any further questions.
The Avast Support Team