Public
- Public
- Network
- Groups
- Featured
- Popular
- People

Notices by morb (morb@mastodon.social), page 2

Embed this notice
morb (morb@mastodon.social)'s status on Tuesday, 03-Sep-2024 07:59:36 JST morb
in reply to
- Richard "mtfnpy" Harman (he/him)
- Royce Williams
@xabean @tychotithonus have you tried shell injection in any of the provisioning file fields yet

In conversation Tuesday, 03-Sep-2024 07:59:36 JST from gnusocial.jp permalink
Embed this notice
morb (morb@mastodon.social)'s status on Tuesday, 03-Sep-2024 07:59:36 JST morb
in reply to
- Richard "mtfnpy" Harman (he/him)
- Royce Williams
@xabean @tychotithonus running jtr against it and rockyou2024 right now for yucks

In conversation Tuesday, 03-Sep-2024 07:59:36 JST from gnusocial.jp permalink
Embed this notice
morb (morb@mastodon.social)'s status on Tuesday, 03-Sep-2024 07:59:36 JST morb
in reply to
- Richard "mtfnpy" Harman (he/him)
- Royce Williams
@xabean @tychotithonus fwiw the Intelbras TIP 200 series shares the same shadow entries; dead end finding any working creds attributed though
https://github.com/Ls4ss/CVE-2020-13886/blob/master/README.md

In conversation Tuesday, 03-Sep-2024 07:59:36 JST from mastodon.social permalink
Embed this notice
morb (morb@mastodon.social)'s status on Tuesday, 03-Sep-2024 07:59:35 JST morb
in reply to
- Richard "mtfnpy" Harman (he/him)
- Royce Williams
@xabean @tychotithonus
extracted latest fw for TIP200 (60.61.75.22) and...
[Yealink Busybox Ver 1.0.0.1]
BusyBox v1.10.3 (2013-08-06 13:53:41 CST) multi-call binary
Copyright (C) 1998-2007 Erik Andersen, Rob Landley, Denys Vlasenko
>_<

In conversation Tuesday, 03-Sep-2024 07:59:35 JST from mastodon.social permalink
Embed this notice
morb (morb@mastodon.social)'s status on Tuesday, 03-Sep-2024 07:59:34 JST morb
in reply to
- Richard "mtfnpy" Harman (he/him)
@xabean don't have one on hand; just the latest firmware I could find for a rebranded Yealink that had the same shadow file -- will dig for that tho
PasswdCopy.sh looks like it uses an unsafe subshell fwiw
In conversation Tuesday, 03-Sep-2024 07:59:34 JST from gnusocial.jp permalink
Attachments
1. Untitled attachment
  https://files.mastodon.social/media_attachments/files/113/068/335/135/342/660/original/d9aafc534ba7eca3.png
2. Untitled attachment
Embed this notice
morb (morb@mastodon.social)'s status on Sunday, 01-Sep-2024 07:59:50 JST morb
in reply to
- Ryan Castellucci (they/them) :nonbinary_flag:
@ryanc
In conversation Sunday, 01-Sep-2024 07:59:50 JST from gnusocial.jp permalink
Attachments
1. Untitled attachment
Embed this notice
morb (morb@mastodon.social)'s status on Sunday, 01-Sep-2024 07:31:24 JST morb
in reply to
- Ryan Castellucci (they/them) :nonbinary_flag:
@ryanc ^_~

In conversation Sunday, 01-Sep-2024 07:31:24 JST from gnusocial.jp permalink
Embed this notice
morb (morb@mastodon.social)'s status on Sunday, 01-Sep-2024 07:06:29 JST morb
in reply to
- Ryan Castellucci (they/them) :nonbinary_flag:
@ryanc it's cool I'm not IC

In conversation Sunday, 01-Sep-2024 07:06:29 JST from gnusocial.jp permalink
Embed this notice
morb (morb@mastodon.social)'s status on Sunday, 01-Sep-2024 06:19:35 JST morb
in reply to
- Ryan Castellucci (they/them) :nonbinary_flag:
@ryanc including raw performance of gpgpus or just what's stored on disk

In conversation Sunday, 01-Sep-2024 06:19:35 JST from mastodon.social permalink

After

User actions

DEFILE_ID.DIZ

Tags

(None)

Following 0

Followers 0

Groups 0

Statistics

User ID: 240373

Member since: 5 Feb 2024

Notices: 29

Daily average: 0

Feeds

Atom