Tag Archives: vulnerability

#Phreaking2016: Authentication Flaw in O2 (Telefónica) ACS

Posted on 08.01.2016 by hph

Today, the details on a major authentication flaw in the Auto Configuration Server (ACS) of the German ISP O2 (Telefónica) were released. A tl;dr could be “Tell me your IPv4 address and I may place and accept phone calls on your behalf!”. … Continue reading →

Posted in default | Tagged cwmp, tr-069, vulnerability | 2 Comments

Rooting and Looting of the o2 HomeBox 3232

Posted on 23.07.2014 by hph

In November 2012 I published a tool which decrypts configuration backup files of Sphairon-based routers. This tool was mainly used by o2 customers who wanted to extract their VoIP login data so they could use any router they prefer – … Continue reading →

Posted in default | Tagged embedded hacking, Sphairon, vulnerability | Leave a comment

AVM FRITZ!Box remote command injection vuln

Posted on 16.02.2014 by hph

Today I am featured in an article on heise.de. Have fun reading and do not forget to update your FRITZ!Box 😉

Posted in default | Tagged embedded hacking, vulnerability | 1 Comment

Tag Archives: vulnerability

#Phreaking2016: Authentication Flaw in O2 (Telefónica) ACS

Rooting and Looting of the o2 HomeBox 3232

AVM FRITZ!Box remote command injection vuln

Tags

Archives

Meta