Hacker Newsnew | past | comments | ask | show | jobs | submit | dyngnosis's commentslogin

Telnet is on by default. It is a busybox shell. This device is normally connected to a network via wifi. There is an additional Ethernet port on the back. It is safe to say every patient using one of these has physical access. The wireless encryption keys are stored in plain text.


I've got a full advisory written up. It is unclear if the vendor will patching the device. When I get that cleared up I'll have a full advisory for everyone. In the meantime if you need something answered urgently you can contact me directly.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: