Home > IT Related > 0day on TM Billion ADSL Modem/Router

0day on TM Billion ADSL Modem/Router

February 6th, 2010 xanda Leave a comment Go to comments

Quick update

Here is my short update. I was playing around with the ‘nice’ modem and I found 2 vulnerability

1) Remote code execution
2) DoS

Tested on Firmware Version : 2.10.5.0(UE0.C2C)3.7.6.1

I’m looking forward to play around with Riger Corporation’s modem that came with “Enhanced by TM R&D Malaysia” label on it :)

Categories: IT Related Tags: , , , , , , , , ,
  1. mamat
    February 6th, 2010 at 07:59 | #1
    Reply | Quote

    w00ts… I’ve both of them with me. Would appreciate if you could share the details especially on RCE part. and DoS too

  2. xanda
    February 6th, 2010 at 10:45 | #2
    Reply | Quote

    @mamat
    its unethical if i release it to the public, unless within trusted group. hey do you fuzz? if yes, i can give you tips

  3. mamat
    February 6th, 2010 at 11:59 | #3
    Reply | Quote

    xanda, any tips would be most appreciated ;)

  4. Ray Johansen
    July 6th, 2010 at 18:25 | #4
    Reply | Quote

    Cool that you found these vulnerabilities, but of course you should be careful who you give it to. But, cool stuff. It’s your kind of people that helps the IT security grow stronger. Thanks _Ray

  5. xanda
    July 7th, 2010 at 08:11 | #5
    Reply | Quote

    @Ray Johansen
    thanks

  1. February 7th, 2010 at 13:25 | #1
    bt 220v linux driver ? | Linux Backup Server
  2. February 19th, 2010 at 19:21 | #2
    How to configure my adsl modem in linux? | Linux Application Server