# echo "127.0.0.67 " > fmtableĪnd it does resolve on a client on the wifi network of the wifi extender. The firmware is of the latest version: V1.00(AAQB.2)C0 and hardware version is PC.A. Not sure what to think of this one since the busybox is opensource and can be re-compiled by anyone using the needed features.
![cve 2017 14491 zyxel firmware update cve 2017 14491 zyxel firmware update](https://i.ytimg.com/vi/2FCWcVfOgp0/maxresdefault.jpg)
This multi-call binary runs BusyBox v1.12.1 from 2008 but dates to " 16:51:27 CST".
#Cve 2017 14491 zyxel firmware update software
The Acme mini_httpd is version 1.19 dating from ! The busybox software used to embedded device with limited storage is from 2008. Part of the Ralink software image is also found on as source code on github ralink_sdk. The WRE6505 is running a embedded Linux distribution from MediaTek Ralink with a mini_httpd webserver and server processes that can discovered with the busybox enabled ps command. Both passwords are the same and in many cases they are the default '1234' password as set by the vendor. |_http-title: Site doesn't have a title (text/html charset=iso-8859-1).Īccess via telnet is possible using the root username as well as the admin username. There was no option in the web interface to disable to telnet access so I decided to take a look.ĭiscovered open port 80/tcp on 192.168.1.2ĭiscovered open port 23/tcp on 192.168.1.2Ĭompleted Connect Scan, 1.17s elapsed (1000 total ports)Ģ3/tcp open telnet NASLite-SMB/Sveasoft Alchemy firmware telnetdĨ0/tcp open http mini_httpd 1.19 19dec2003
![cve 2017 14491 zyxel firmware update cve 2017 14491 zyxel firmware update](https://support.zyxel.eu/hc/article_attachments/360001409699/KB2.png)
We run it behind our internet modem as AP and I noticed it had the telnet port open.
![cve 2017 14491 zyxel firmware update cve 2017 14491 zyxel firmware update](https://support.zyxel.eu/hc/article_attachments/4403348526226/mceclip0.png)
The Zyxel AC750 Dual-Band Wireless Range Extender (WRE6505) can be used as Wifi repeater or Wifi Access Point. While troubleshooting the local Wifi network for configuration issues I stumbled upon an interesting security issue. The Zyxel WRE6505 Wifi range extender has an interesting feature.