Hacker Newsnew | past | comments | ask | show | jobs | submitlogin
Shiny Old VxWorks Vulnerabilities (metasploit.com)
22 points by VeXocide on Aug 2, 2010 | hide | past | favorite | 3 comments



Very interesting-its hard to believe that an embedded device manufacturer would release a device with debugging enabled and baked in-when I worked in industrial embedded electronics there was no way to dump the memory across the network (well you could read/write bits in memory using a backdoor that was implemented for setting the serial number but you had to poke the bytes in the right order and it only triggered a function builtin to the firmware to write to NVRAM..)


That's right, nobody would ever do anything like echoing everything you type to a command shell or anything:

http://www.zdnet.com/blog/burnette/worst-bug-ever/680

:-)


Oh I had forgotten about that. Haha




Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: