0day on TM Billion ADSL Modem/Router

Posted: February 6th, 2010 | Author: | Filed under: IT Related | Tags: , , , , , , , , , | 7 Comments »

Quick update

Here is my short update. I was playing around with the ‘nice’ modem and I found 2 vulnerability

1) Remote code execution
2) DoS

Tested on Firmware Version : 2.10.5.0(UE0.C2C)3.7.6.1

I’m looking forward to play around with Riger Corporation’s modem that came with “Enhanced by TM R&D Malaysia” label on it 🙂


7 Comments on “0day on TM Billion ADSL Modem/Router”

  1. 1 mamat said at 7:59 AM on February 6th, 2010:

    w00ts… I’ve both of them with me. Would appreciate if you could share the details especially on RCE part. and DoS too

  2. 2 xanda said at 10:45 AM on February 6th, 2010:

    @mamat
    its unethical if i release it to the public, unless within trusted group. hey do you fuzz? if yes, i can give you tips

  3. 3 mamat said at 11:59 AM on February 6th, 2010:

    xanda, any tips would be most appreciated 😉

  4. 4 bt 220v linux driver ? | Linux Backup Server said at 1:25 PM on February 7th, 2010:

    […] 0day on TM Billion ADSL Modem/Router | Xanda's Blog !~! […]

  5. 5 How to configure my adsl modem in linux? | Linux Application Server said at 7:21 PM on February 19th, 2010:

    […] 0day on TM Billion ADSL Modem/Router | Xanda's Blog !~! […]

  6. 6 Ray Johansen said at 6:25 PM on July 6th, 2010:

    Cool that you found these vulnerabilities, but of course you should be careful who you give it to. But, cool stuff. It’s your kind of people that helps the IT security grow stronger. Thanks _Ray

  7. 7 xanda said at 8:11 AM on July 7th, 2010:

    @Ray Johansen
    thanks


Leave a Reply