Sponsored Links

VoIP - CISCO SPA112 2-Port Vulnerability

Meatball

ULTIMATE Member
Widely used and cheap units available on eBay.

Just a note so people are aware of the issue and that CISCO are not fixing it.

 
So don't trust these from Ebay and other second hand markets or indeed.. not even new ones.
 
I read some not great stories about folks unwittingly exposing these sorts of ATAs by opening ports on their routers or stocking them in the DMZ. It’s just asking for trouble and it’s only a matter of when and not if they’ll get hacked.
 
Sponsored Links
I read some not great stories about folks unwittingly exposing these sorts of ATAs by opening ports on their routers or stocking them in the DMZ. It’s just asking for trouble and it’s only a matter of when and not if they’ll get hacked.
7l5f87.webp
 
I read some not great stories about folks unwittingly exposing these sorts of ATAs by opening ports on their routers or stocking them in the DMZ. It’s just asking for trouble and it’s only a matter of when and not if they’ll get hacked.
But they accept PPPoE details, why cant I use it as my router?
 
Sponsored Links
Joke aside, this vulnerability might be a way in to port openwrt.


Code:
Jan 1 00:00:11 admin kern.notice [ 0.000000] Linux version 2.6.26.5 (yuzho2@Payton) (gcc version 4.1.2) #1 PREEMPT Sun Sep 6 10:54:57 CST 2015
Jan 1 00:00:11 admin kern.warning [ 0.000000] CPU: ARM926EJ-S [41069265] revision 5 (ARMv5TEJ), cr=00053177
Jan 1 00:00:11 admin kern.warning [ 0.000000] Machine: NXP PNX8181
Board: Vega_PNX8181_BaseStation low-cost version detected.


According to JRWR, the Vega PNX8181 Basestation has 32MB memory and 128MB nand.

32MB already means it's unsupportable by modern Openwrt as 21. and above require 64MB memory.

So you are looking at forking 19.07.x for ewaste.
 
I read some not great stories about folks unwittingly exposing these sorts of ATAs by opening ports on their routers or stocking them in the DMZ. It’s just asking for trouble and it’s only a matter of when and not if they’ll get hacked.
I don't get why anybody would even bother hacking a VoIP adapter. It's a pathetic thing to do really
 
Top
Cheap BIG ISPs for 100Mbps+
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Vodafone UK ISP Logo
Vodafone £24.00 - 26.00
150Mbps
Gift: None
NOW UK ISP Logo
NOW £24.00
100Mbps
Gift: None
Plusnet UK ISP Logo
Plusnet £25.99
145Mbps
Gift: £50 Reward Card
Large Availability | View All
Cheapest ISPs for 100Mbps+
Gigaclear UK ISP Logo
Gigaclear £17.00
200Mbps
Gift: None
Community Fibre UK ISP Logo
150Mbps
Gift: None
Virgin Media UK ISP Logo
Virgin Media £22.99
132Mbps
Gift: None
Hey! Broadband UK ISP Logo
150Mbps
Gift: None
Youfibre UK ISP Logo
Youfibre £23.99
150Mbps
Gift: None
Large Availability | View All
Sponsored Links
The Top 15 Category Tags
  1. FTTP (6028)
  2. BT (3639)
  3. Politics (2721)
  4. Business (2440)
  5. Openreach (2405)
  6. Building Digital UK (2330)
  7. Mobile Broadband (2146)
  8. FTTC (2083)
  9. Statistics (1902)
  10. 4G (1816)
  11. Virgin Media (1764)
  12. Ofcom Regulation (1582)
  13. Fibre Optic (1467)
  14. Wireless Internet (1462)
  15. 5G (1407)
Sponsored

Copyright © 1999 to Present - ISPreview.co.uk - All Rights Reserved - Terms  ,  Privacy and Cookie Policy  ,  Links  ,  Website Rules