<?xml version="1.0" encoding="utf-8"?>
<!-- generator="FeedCreator 1.7.2" -->
<rss version="2.0">
    <channel>
        <title>Lowyat.NET: Latest topics by whirleyes</title>
        <description></description>
        <link>http://forum.lowyat.net/</link>
        <lastBuildDate>Wed, 01 Jul 2026 20:02:37 +0800</lastBuildDate>
        <generator>FeedCreator 1.7.2</generator>
        <item>
            <title>Fiberhome SR1041F backdoor root ssh access</title>
            <link>http://forum.lowyat.net/topic/5417144</link>
            <description>Fiberhome Router SR1041F RP0105 ssh root backdoor&lt;br /&gt;&lt;br /&gt;It is possible to login ssh as root user by exploiting remote code execution vulnerability&lt;br /&gt;&lt;a href='https://gist.github.com/whirleyes/c664c33ff0e0461692c1446f2a97abb9' target='_blank'&gt;https://gist.github.com/whirleyes/c664c33ff...2c1446f2a97abb9&lt;/a&gt; and backdoor factory access mode in dropbear&lt;br /&gt;&lt;br /&gt;Pre-authentication remote code execution allows anyone without logged in to send commands to the operating system as the root user.&lt;br /&gt;&lt;br /&gt;&lt;b&gt;&lt;span style='font-size:16pt;line-height:100%'&gt;Thus, opening WAN port 80 could be unsafe for your network.&lt;br /&gt;&lt;/span&gt;&lt;/b&gt;&lt;br /&gt;&lt;br /&gt;This scenario involves a sequence of commands:&lt;br /&gt;1. Enable factory mode&lt;br /&gt;2. Remove root password&lt;br /&gt;3. Restart dropbear (allow no password and use /var/passwd instead of /var/dropbear_passwd)&lt;br /&gt;4. Open firewall&lt;br /&gt;&lt;br /&gt;&lt;b&gt;SSH root backdoor execution&lt;/b&gt;&lt;br /&gt;&lt;a href='https://gist.github.com/whirleyes/7916c5cd03fa7d8c85aaceb2f50f837c' target='_blank'&gt;https://gist.github.com/whirleyes/7916c5cd0...5aaceb2f50f837c&lt;/a&gt;&lt;br /&gt;&lt;br /&gt;Done submitting CVE.</description>
            <author>whirleyes</author>
            <category>Networks and Broadband</category>
            <pubDate>Sun, 29 Oct 2023 22:54:48 +0800</pubDate>
        </item>
    </channel>
</rss>
