DEF CON 22 I Hunt TR 069 Admins Pwning ISPs Like a Boss
Zaid Abdulla
zaid at genieacs.com
Fri Jan 16 16:08:38 EST 2015
Hello,
I thought you guys might be interested in this TR-069 related talk:
https://www.youtube.com/watch?v=DlID0CH3j4M
In this talk Shahar and his team from Checkpoint Technologies researched
a few ACS systems looking for security vulnerabilities. GenieACS was one
of the systems they looked into and found a vulnerability. They were
kind to inform me before publishing their findings. This is the fix of
said vulnerability if anyone is curious:
https://github.com/zaidka/genieacs/commit/03f9a9e6289c18f3a9742d9737552d150294605d
Zaid
More information about the Users
mailing list