关键漏洞信息 漏洞类型: Zero-day vulnerability 影响设备: Virgin Media Super Hub 3 routers 影响用户: VPN users 披露时间: 2021-09-20 首次发现: 2019-06 漏洞细节 DNS rebinding attack: Allows revealing a VPN user's true IP address by visiting a malicious website. Privacy implications: Severe due to the silent nature of the vulnerability; potential misuse by nation-states or law enforcement. Affected models: ARRIIS TG2492 and possibly other related models. 供应商响应 Liberty Global: Requested a year-long delay for public disclosure. Virgin Media: Working on a "technical fix," describing it as an edge-case issue affecting only a small subset of customers. 防护建议 Block LAN traffic on a VPN for protection. Firewall traffic to the router for enhanced security.