Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] FiWin SS28S WiFi VoIP SIP/Skype Phone Hardcoded Te

from [pagvac] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] FiWin SS28S WiFi VoIP SIP/Skype Phone Hardcoded Telnet user/pass and debug access
Date: Sat, 23 Sep 2006 02:40:50 +0100 
Sorry, I meant to say "the ATM machine *hack* reported on Wired
magazine". Damn it, I need to get used to proofreading what I type
before posting! :-)

On 9/23/06, pagvac <unknown.pentester@gmail.com> wrote:

On 9/22/06, Paul Schmehl <pauls@utdallas.edu> wrote:


 --On Thursday, September 21, 2006 17:14:40 -0700 Shawn Merdinger
<shawnmer@gmail.com> wrote:


Zachary McGrew has discovered and reported that the FiWin SS28S WiFi
VoIP SIP/Skype Phone with firmware version 01_02_07 has VxWorks Telnet
open with a hardcoded user/pass of 1/1.  Various debug commonds enable
viewing SIP credentials, WEP keys, etc. on the phone.

 >

More details here:
http://www.osnews.com/story.php/15923/Review-FiWin-SS28S-WiFi-VoIP-SIPSky
pe-Phone/

 >
The engineers who designed this should be summarily fired.  The terminal
stupidity of it is mind boggling!



I still find default passwords on ATM machines even more stupid :-D 
Especially when it allows you to reconfigure the machine into thinking that 
it gave you 4 times less money than it really did.

Not only default passwords on ATM machines concern me, but also remote 
monitoring/management software for ATM machines. If you think I got this idea 
from a cyberpunk movie then check out the following link:

 http://www.tranax.com/products/webrms/

One of the interesting features that the pro version of WebRMS includes is 
"ATM Configuration Settings":
http://www.tranax.com/products/webrms/package.cfm?pkg=pro.cfm (click on 
"Feature comparison")

I hope that *doesn't* mean that the ATM machine hacked reported on Wired 
magazine can also be done remotely!:

http://blog.wired.com/27BStroke6/index.blog?entry_id=1560245

What can I say, we humans are stupid by design.



 Paul Schmehl (pauls@utdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
http://www.utdallas.edu/ir/security/


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/







--
pagvac
[http://ikwt.com/]


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] Yet another 0day for IE, Bill Stout
Next by Date:  [Full-disclosure] IM Sniffer release, crazy frog crazy frog
Previous by Thread:  Re: [Full-disclosure] FiWin SS28S WiFi VoIP SIP/Skype Phone Hardcoded Telnet user/pass and debug access, pagvac
Next by Thread:  [Full-disclosure] Self-contained XSS Attacks (the new generation of XSS), pdp (architect)
Indexes:  [Date] [Thread] [Top] [All Lists]