D-Link IP Security Hole? No, this is “Feature”!
Intuition of system administrators most often tells: “Stay away from D-Link equipment”. If we don’t have to speak about the build quality of these devices and the reliability of their work: most administrators who are somehow familiar with the products of this vendor do not expect miracles here, then such an item as “Security” is not amenable to the senses.
However, here too , D-Link managed to “please” us by implementing a “ security feature ” and confirming it with a document ...
')
If your company uses IP telephony and has D-Link equipment, then this material is highly recommended for reading.
At the official D-Link equipment support forum, the topic of D-Link VoIP equipment security was raised :
"Good day!
We operate over a hundred phones of this model.
Recently, the following features of this unit were discovered:
1. Going to the phone's web-interface under the default guest account with the guest password (common access level), you can change the phone configuration: IP, SIP, and other settings. You can even look at the password configuration file.
2. when this guest account is deleted, it reappears after the phone is rebooted. It appears with the guest password even if it has been replaced prior to deletion.
Firmware version on this machine: GE_1.00
Tell me, is this a bug or a feature of these phones? ”
To which D-Link employee Alexey Motkov gives an official response:
"Feature"
Do you understand, yes? Is it worth wasting letters to describe the whole enchanting delusionalness of such a situation ?? Needless to say, one of the most vulnerable elements of IP telephony, which is often in networks uncontrolled by the admin, has just a giant hole, which D-Link employees call the “Feature”?
To enable hackers to enter the phone, download the configuration and enter the station the first time, after which they call them hundreds of thousands of rubles - this is what D-Link calls a feature.
Surely, the topic in the near future administrators will cut it out, because D-Link's reputation will fall with each viewing of this topic. Therefore, we attach to this article notarized screenshots: click once , click two .
UPD: A lot of interesting things (the link was given by Alexey Motkov himself)
However, here too , D-Link managed to “please” us by implementing a “ security feature ” and confirming it with a document ...
')
If your company uses IP telephony and has D-Link equipment, then this material is highly recommended for reading.
At the official D-Link equipment support forum, the topic of D-Link VoIP equipment security was raised :
"Good day!
We operate over a hundred phones of this model.
Recently, the following features of this unit were discovered:
1. Going to the phone's web-interface under the default guest account with the guest password (common access level), you can change the phone configuration: IP, SIP, and other settings. You can even look at the password configuration file.
2. when this guest account is deleted, it reappears after the phone is rebooted. It appears with the guest password even if it has been replaced prior to deletion.
Firmware version on this machine: GE_1.00
Tell me, is this a bug or a feature of these phones? ”
To which D-Link employee Alexey Motkov gives an official response:
"Feature"
Do you understand, yes? Is it worth wasting letters to describe the whole enchanting delusionalness of such a situation ?? Needless to say, one of the most vulnerable elements of IP telephony, which is often in networks uncontrolled by the admin, has just a giant hole, which D-Link employees call the “Feature”?
To enable hackers to enter the phone, download the configuration and enter the station the first time, after which they call them hundreds of thousands of rubles - this is what D-Link calls a feature.
Surely, the topic in the near future administrators will cut it out, because D-Link's reputation will fall with each viewing of this topic. Therefore, we attach to this article notarized screenshots: click once , click two .
UPD: A lot of interesting things (the link was given by Alexey Motkov himself)
Source: https://habr.com/ru/post/194154/
All Articles