Comments on: ZyXEL Gateways Vulnerability Research (Part 2) http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/ Information Security Think Tank Sat, 02 Feb 2013 17:50:40 +0000 hourly 1 http://wordpress.org/?v=3.4.1 By: Adrian 'pagvac' Pastor http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/comment-page-1/#comment-117867 Adrian 'pagvac' Pastor Fri, 04 Apr 2008 08:30:51 +0000 http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/#comment-117867 @lx: We're always more than happy to answer any questions you guys might have regarding our research. Thanks a lot for your interest (I mean it)! You can find the 1st part of the paper here: http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf @Kender: have you considered adding more details to your reverse-engineering tutorial? I think the community would benefit a lot from it if you made it more complete: http://www.mindmasters.nl/kender/zyxel/ @lx: We’re always more than happy to answer any questions you guys might have regarding our research. Thanks a lot for your interest (I mean it)! You can find the 1st part of the paper here:

http://www.procheckup.com/Hack.....teways.pdf

@Kender: have you considered adding more details to your reverse-engineering tutorial? I think the community would benefit a lot from it if you made it more complete:

http://www.mindmasters.nl/kender/zyxel/

]]> By: Ix http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/comment-page-1/#comment-117828 Ix Thu, 03 Apr 2008 17:41:25 +0000 http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/#comment-117828 Ahh, well that explains how and why I missed the first one, was wondering how I missed it and couldn't find it in the archive (I did stay up too late watching some movies with friends last night so I was thinking it might have been sleep dep messing with me). Thanks for the response. Off to google next time I have time to search and read. Ahh, well that explains how and why I missed the first one, was wondering how I missed it and couldn’t find it in the archive (I did stay up too late watching some movies with friends last night so I was thinking it might have been sleep dep messing with me). Thanks for the response.

Off to google next time I have time to search and read.

]]> By: Adrian 'pagvac' Pastor http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/comment-page-1/#comment-117825 Adrian 'pagvac' Pastor Thu, 03 Apr 2008 16:22:56 +0000 http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/#comment-117825 @Kender - as I said, the tool is more than enough to get the admin password which is what I was interested in anyway. Regarding protections, well, the first protection is NOT to use ZyXEL routers. If this is not an option for you, then you can check out the first part of the paper which talks about how to defend against these attacks. @lx - no reason. Just found some serious issues during a pentest, and then decided to purchase a few more to test them more in depth. btw, the first part of the paper was published on the 3rd party-site. Google is your friend ;) @Kender – as I said, the tool is more than enough to get the admin password which is what I was interested in anyway.

Regarding protections, well, the first protection is NOT to use ZyXEL routers. If this is not an option for you, then you can check out the first part of the paper which talks about how to defend against these attacks.

@lx – no reason. Just found some serious issues during a pentest, and then decided to purchase a few more to test them more in depth. btw, the first part of the paper was published on the 3rd party-site. Google is your friend ;)

]]> By: Ix http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/comment-page-1/#comment-117821 Ix Thu, 03 Apr 2008 15:23:59 +0000 http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/#comment-117821 After reading this I have to ask, is there any particular reason why you used ZyXEL devices? Was it what was on hand or donated for testing? or are they much easier to break into than other routers and firewalls from other companies, therefore giving better coverage of all the possible vulnerabilities that could be found? I haven't had time to read the report yet and I somehow missed seeing the first one, so if the why is in either of them just ignore this question. Off to the archives to hunt down the first report now. After reading this I have to ask, is there any particular reason why you used ZyXEL devices? Was it what was on hand or donated for testing? or are they much easier to break into than other routers and firewalls from other companies, therefore giving better coverage of all the possible vulnerabilities that could be found? I haven’t had time to read the report yet and I somehow missed seeing the first one, so if the why is in either of them just ignore this question.

Off to the archives to hunt down the first report now.

]]> By: Kender http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/comment-page-1/#comment-117811 Kender Thu, 03 Apr 2008 13:36:03 +0000 http://www.gnucitizen.org/blog/zyxel-gateways-vulnerability-research-part-2/#comment-117811 <blockquote>Although such tool is a half-baked project and is a bit buggy</blockquote> Heheh, you're right. I never seem to properly finish anything before something else comes along to catch my interest :) Nice paper though. Perhaps you could include a few simple points on how to prevent attacks on your device.

Although such tool is a half-baked project and is a bit buggy

Heheh, you’re right. I never seem to properly finish anything before something else comes along to catch my interest :) Nice paper though. Perhaps you could include a few simple points on how to prevent attacks on your device.

]]>