Skip to content

Krzysztof Burghardt’s blog

Create. Break. Fix. Repeat.

  • About
  • Contact
  • Sitemap

Tag: login

DASAN H665 has vendor backdoor built into BusyBox’s /bin/login

[Translate]

DASAN H665 has vendor backdoor built into BusyBox /bin/login. Account named “dnsekakf2$$” gives access to admin (uid 0) account over telnet, at least for administration interface documented in H665 QIG (Quick Guide).

DASAN H665 is GPON Optical Network Terminal (ONT). It could work as router/NAT or bridge and allow End User to Web Access device at http://192.168.55.1/. Depending on device’s configuration it might assign different 192.168.X.0/24 subnet over DHCP, but device still reply to traffic on 192.168.55.1 from any devices in 192.168.55.0/24 subnet.

This vulnerability was assigned CVE-2019-8950.

Continue reading “DASAN H665 has vendor backdoor built into BusyBox’s /bin/login”

Author Krzysztof BurghardtPosted on February 15, 2019March 18, 2019Categories English, Hardware, Linux, SecurityTags BusyBox, DASAN, GPON, H665, Linux, login, ONT, Security, telnet2 Comments on DASAN H665 has vendor backdoor built into BusyBox’s /bin/login
  • About
  • Contact
  • Sitemap

Sorry. No data so far.

Security PPP WINE ClamFS Internet H660RM LKM MAC DASAN QEMU ptrace kernel funkey tuner ActiveMQ Web OpenWRT OpenSSL AMD64 ONT TV FreeBSD ltrace Asus GNU GPON daemon ClamAV IP userspace pppd Debian OpenGL multimedia event PHP input key WordPress DNS Linux Google keyboard Apache strace

Archives

  • July 2019
  • March 2019
  • February 2019
  • July 2010
  • April 2010
  • March 2010
  • November 2009
  • October 2009
  • August 2009
  • July 2009
  • May 2009
  • March 2009
  • February 2009
  • January 2009
  • December 2008
  • November 2008
  • September 2008
  • May 2008
  • April 2008
  • March 2008
  • January 2008
  • December 2007
  • November 2007

Pages

  • About
    • Contact
    • Certificates
    • OpenPGP public key
  • Sitemap

Popular Posts

Sorry. No data so far.

Recent Posts

  • Sam naprawiam lampę insektobójczą Blaupunkt BP-GIK04
  • diag_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 allows spawning ping processes without any authorization leading to information disclosure and DoS attacks
  • Boa Webserver on DASAN H660RM devices with firmware 1.03-0022 saves post data, including credentials, to /tmp/boa-temp
  • syslog_tool.cgi on DASAN H660RM devices with firmware 1.03-0022 uses a hard-coded key for logs encryption
  • DASAN H665 has vendor backdoor built into BusyBox’s /bin/login

Archives

  • July 2019 (1)
  • March 2019 (3)
  • February 2019 (1)
  • July 2010 (1)
  • April 2010 (1)
  • March 2010 (1)
  • November 2009 (1)
  • October 2009 (2)
  • August 2009 (1)
  • July 2009 (1)
  • May 2009 (1)
  • March 2009 (3)
  • February 2009 (1)
  • January 2009 (5)
  • December 2008 (1)
  • November 2008 (2)
  • September 2008 (3)
  • May 2008 (5)
  • April 2008 (1)
  • March 2008 (5)
  • January 2008 (3)
  • December 2007 (6)
  • November 2007 (9)

Tags

  • ActiveMQ
  • AMD64
  • Apache
  • Asus
  • ClamAV
  • ClamFS
  • daemon
  • DASAN
  • Debian
  • DNS
  • event
  • FreeBSD
  • funkey
  • GNU
  • Google
  • GPON
  • H660RM
  • input
  • Internet
  • IP
  • kernel
  • key
  • keyboard
  • Linux
  • LKM
  • ltrace
  • MAC
  • multimedia
  • ONT
  • OpenGL
  • OpenSSL
  • OpenWRT
  • PHP
  • PPP
  • pppd
  • ptrace
  • QEMU
  • Security
  • strace
  • tuner
  • TV
  • userspace
  • Web
  • WINE
  • WL-500g
  • About
  • Contact
  • Sitemap
Krzysztof Burghardt’s blog Proudly powered by WordPress
English English Afrikaans Afrikaans العربية العربية Беларуская Беларуская български български català català česky česky Cymraeg Cymraeg dansk dansk Deutsch Deutsch ελληνική ελληνική español español eesti eesti فارسی فارسی suomi suomi français français Gaeilge Gaeilge galego galego עברית עברית हिन्दी हिन्दी hrvatski hrvatski magyar magyar bahasa Indonesia bahasa Indonesia íslenska íslenska italiano italiano 日本語 日本語 한국어 한국어 lietuvių lietuvių latviešu latviešu македонски македонски bahasa Melayu bahasa Melayu Malti Malti Nederlands Nederlands norsk norsk polski polski português português română română русский русский slovenčina slovenčina slovenščina slovenščina shqipe shqipe српски српски svenska svenska Kiswahili Kiswahili ภาษาไทย ภาษาไทย Filipino Filipino Türkçe Türkçe українська українська tiếng Việt tiếng Việt ייִדיש ייִדיש 中文 (简体) 中文 (简体) 中文 (繁體) 中文 (繁體) powered byGoogle