Decompressing Snom Firmware

From Secure Computing Wiki
Revision as of 21:20, 20 September 2016 by Krzee (Talk | contribs)

Jump to: navigation, search

I (krzee) recently decided to check if Snom ever decided to update their version of OpenVPN yet. About 18 months ago I informed them on their forum [1] that their versions of openssl and openvpn are insecure. When I went to reply to my own post to bump it, I found that Snom has decided to discontinue their web forum, and their new helpdesk is closed to the public. They will only allow their authorized resellers to use their new helpdesk. So now I can no longer reach them to see if they care about my request at all. I decided it was time to decompress their latest vpn firmware in order to see what version of openvpn it contains. I found the exact same version (2.2.2) Hopefully next time one of us decompresses their VPN firmware we will find an up to date version of openvpn. In case they remove the web forum all together, here was my post:

on snom710-SIP

OpenSSL 1.0.0c 2 Dec 2010 OpenVPN 2.2.2 mips-linux [SSL] [LZO2] [EPOLL] [eurephia]

There is also a HMAC key leak in openvpn 2.3.0 and before.

What are the plans for updating openssl and openvpn? that version of openssl is from 2010 and openvpn is from 2011!

The following is the commands (and contents of a file) that I used to achieve it.

  1. Yes, that is 1024 :-p

> cat






dd if=$imgFile bs=128 skip=1 count=1 2>/dev/null | openssl rsautl -verify -out $keyFile -inkey "$pubFile" -pubin >/dev/null 2>&1

dd if=$imgFile bs=128 skip=2 2>/dev/null | openssl enc -aes128 -d -kfile $keyFile 2>/dev/null | tar --exclude=proc/.hidden --exclude=sys/.hidden -xzmf -