Keep up to date with the latest developments from the Fidus team.
Description “The DCS-5020L Wireless N Day & Night Pan/Tilt Cloud Camera is a day/night network camera that easily connects to your existing home network for remote viewing on a range of mobile devices. It features pan, tilt and digital zoom function to allow you to see a wider area with a single camera, built-in Wi-Fi […]
Introduction In October of 2017 we disclosed multiple vulnerabilities in TP-Link’s WR940n router that occurred due to multiple code paths calling strcpy on user controllable unsanitised input (CVE-2017-13772) The httpd binary responsible for these vulnerabilities contained patterns of code that looked similar to the following: At the time of disclosure, there were around 7000 of […]
Introduction A few days ago I received a message from a friend who had just had his Deliveroo (food delivery service in the UK) account compromised and someone in London had used it to order a copious amount of food and alcohol; brazen, I know. The interesting part of this story is my friend was […]
Introduction We previously showed how the Tenda AC15 router was vulnerable to an unauthenticated remote code execution vulnerability via a stack based buffer overflow. Writing exploits like that can be incredibly interesting, but sometimes, all you need is a GET request to get root. In this post we will outline another vulnerability that allows an […]
Introduction The Tenda AC15 router was found to contain a variety of unnecessary accounts that contain incredibly weak passwords. Note that these accounts do not allow access to the web interface, but are also not configurable from said interface. This means that without access to the device (such as telnet or ssh), a user cannot […]
Before we start.. In this post we will be walking through a vulnerability we identified in NoMachine version 6.0.66_2 and lower that can lead to privilege escalation or denial of service. To start this post, we would like to say a massive thank you to the NoMachine team who were awesome, they acknowledged and triaged […]
Introduction This morning, Fidus’ Penetration Testing team stumbled upon some troubling posts on Reddit accusing FSLabs of bundling a Google Chrome password stealer into their flagship flight simulator product in order to ‘combat piracy’. Yep, it’s as crazy as it sounds. First thoughts on the matter raises numerous questions: What legal boundaries is this pushing, […]