Skip to content

Krzysztof Burghardt’s blog

Create. Break. Fix. Repeat.

  • About
  • Contact
  • Sitemap

Tag: Encryption

syslog_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 uses a hard-coded key for logs encryption

[Translate]

DASAN H660RM devices with firmware 1.03-0022 (and possibly other) uses a hard-coded key “dasanektks123” for logs encryption. Data stored using this key can be decrypted by anyone able to access this key.

This vulnerability was assigned CVE-2019-9975.

Continue reading “syslog_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 uses a hard-coded key for logs encryption”

Author Krzysztof BurghardtPosted on March 18, 2019March 25, 2019Categories English, Hardware, Linux, SecurityTags DASAN, Encryption, GPON, H660RM, Linux, ONT, OpenSSL, SecurityLeave a comment on syslog_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 uses a hard-coded key for logs encryption
  • About
  • Contact
  • Sitemap
  • How to mount file systems easily in Midnight Commander 2 views
  • syslog_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 uses a hard-coded key for logs encryption 1 view
  • diag_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 allows spawning ping processes without any authorization leading to information disclosure and DoS attacks 1 view
ActiveMQ tuner Internet input multimedia DASAN ptrace GPON AMD64 keyboard WINE daemon TV LKM OpenGL MAC PHP Google OpenSSL Linux QEMU pppd key WL-500g Asus userspace DNS H660RM Apache ClamFS Debian ltrace PPP IP kernel strace ClamAV GNU OpenWRT ONT Web FreeBSD Security funkey event

Archives

  • July 2019
  • March 2019
  • February 2019
  • July 2010
  • April 2010
  • March 2010
  • November 2009
  • October 2009
  • August 2009
  • July 2009
  • May 2009
  • March 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008
  • September 2008
  • May 2008
  • April 2008
  • March 2008
  • January 2008
  • December 2007
  • November 2007
  • About
  • Contact
  • Sitemap
Krzysztof Burghardt’s blog Proudly powered by WordPress
English English Afrikaans Afrikaans العربية العربية Беларуская Беларуская български български català català česky česky Cymraeg Cymraeg dansk dansk Deutsch Deutsch ελληνική ελληνική español español eesti eesti فارسی فارسی suomi suomi français français Gaeilge Gaeilge galego galego עברית עברית हिन्दी हिन्दी hrvatski hrvatski magyar magyar bahasa Indonesia bahasa Indonesia íslenska íslenska italiano italiano 日本語 日本語 한국어 한국어 lietuvių lietuvių latviešu latviešu македонски македонски bahasa Melayu bahasa Melayu Malti Malti Nederlands Nederlands norsk norsk polski polski português português română română русский русский slovenčina slovenčina slovenščina slovenščina shqipe shqipe српски српски svenska svenska Kiswahili Kiswahili ภาษาไทย ภาษาไทย Filipino Filipino Türkçe Türkçe українська українська tiếng Việt tiếng Việt ייִדיש ייִדיש 中文 (简体) 中文 (简体) 中文 (繁體) 中文 (繁體) powered byGoogle