December 30, 2024
Subscribe RSS Feed

Essential Downloads

Posted on May 19, 2014 by in Downloads

PDF Reader

Download Adobe Reader 11.0.07  Adobe Reader – Adobe Reader is the most popular program in the world for viewing, creating, managing and manipulating PDF (Portable Document Format) files. It is the standard that all other PDF readers are judged against. Publically released in 1993, Adobe Reader was originally priced at $50 per user before Adobe separated its product range to offer Adobe Reader freeware and their professional Adobe Acrobat versions. PDF became the file format of choice for businesses thanks to its cross platform flexibility and security capabilities.

Beowser

Download Google Chrome 36.0.1985.5 Dev  Google Chrome – Google’s game changing browser Chrome combines sophisticated technology with a simple UI, to create a faster, safer and easier browsing experience. Launched in 2008, Google Chrome quickly dominated the browser market to become the most used browser globally within 4 years of its public release. Google’s rapid and continuous development cycle ensures the browser continues to compete with the other most popular and advanced web browsers available.

Download Firefox 30.0 Beta 5 Firefox – Mozilla Firefox is a fast, light and tidy open source web browser. At its public launch in 2004 Mozilla Firefox was the first browser to challenge Microsoft Internet Explorer’s dominance. Since then, Mozilla Firefox has consistently featured in the top 3 most popular browsers globally. The key features that have made Mozilla Firefox so popular are the simple and effective UI, browser speed and strong security capabilities. The browser is particularly popular with developers thanks to its open source development and active community of advanced users.

Security and Anti-Virus

Download AVG Free Edition 2014.0.4592 (32-bit) AVG Free Edition – VG Anti-Virus Free Edition is trusted antivirus plus antispyware security for Windows accessible to download for free. Additionally, the hot included LinkScanner.  Active Surf-Shield checks webpage for threats at truly the only time which issues – whenever you’re going to click which link.

Download CCleaner 4.13.4693 CCleaner – Probably the top freeware cleaner worldwide with over 1 billion downloads because its release inside 2003. Piriform’s CCleaner is a fast plus user friendly system that makes the computer quicker, more secure plus more reliable.

Editor

Download Notepad++ 6.6.3  Notepad++ – Notepad++ is a free source code editor and Notepad replacement that supports several languages. Running in the MS Windows environment, its use is governed by GPL Licence.

Devices Leak Critical Information Via SNMP ‘Public’ Community String: Researchers

Posted on May 19, 2014 by in Security

Researchers at Rapid7 have uncovered information disclosure issues in SNMP [Simple Network Management Protocol] on embedded devices that could cause them to leak authentication data.

The issues were reported last week as part of a talk at CarolinaCon. According to Rapid7‘s Deral Heiland, the problems were discovered in consumer-grade modems and a load balancer. The situation allows authentication data to be swiped by attackers via the read-only public SNMP community string. The problem was uncovered in the following devices: the Brocade ServerIron ADX 1016-2 PREM TrafficWork Version 12.500T40203 application load balancer; the Ambit U10C019 and Ubee DDW3611 series of cable modems; and the Netopia 3347 series of DSL modems.

“While it can certainly be argued that information disclosure vulnerabilities are simple to resolve and largely the result of poor system configuration and deployment practices, the fact remains that these issues can be exploited to gain access to sensitive information,” blogged Heiland, senior security consultant at Rapid7. “In practice, the low-hanging fruit are often picked first. And with that, we have three new disclosures to discuss.”

“The first involves a Brocade load balancer (you might have one of these in your rack),” he noted. “The second and third involve some consumer-grade modems from Ambit (now Ubee) and Netopia (now Motorola). For the modem/routers, you might have one of these at a remote office, warehouse, guest wi-fi network, water treatment plant, etc. They are quite common in office and industrial environments where IT doesn’t have a strong presence. Shodan identifies 229,409 Ambit devices exposed to the internet, and 224,544 of the Netopia devices.”

Heiland uncovered the vulnerabilities with independent security researcher Matthew Kienow.

According to Heiland, the Brocade device stores username and passwords hashes within the SNMP MIB [Management Information Base] tables at the following OID Indexes:

  • Username:            1.3.6.1.4.1.1991.1.1.2.9.2.1.1         
  • Password hash:    1.3.6.1.4.1.1991.1.1.2.9.2.1.2

“The Brocade ServerIron load balancer has SNMP enabled by default,” he explained. “The community string “public” is configured by default. Unless SNMP is disabled, or the public community string is changed, an attacker can easily extract the passwords hashes for an offline brute force attack.”

The Ambit U10C019 and Ubee DDW3611 series of cable modems store the following information within the SNMP MIB tables at these OID [Object Identifier] Indexes:

 U10c019

  • Username:             1.3.6.1.4.1.4684.2.17.1.2.1.1.97.100.109.105.110
  • Password:              1.3.6.1.4.1.4684.2.17.1.1.1.2.97.100.109.105.110
  • WEP Keys Index:   1.3.6.1.4.1.4684.2.14.2.5.1.2
  • WPA PSK:             1.3.6.1.4.1.4491.2.4.1.1.6.2.2.1.5.6
  • SSID:                     1.3.6.1.4.1.4684.2.14.1.2.0

DDW3611

  • Username:            1.3.6.1.4.1.4491.2.4.1.1.6.1.1.0
  • Password:            1.3.6.1.4.1.4491.2.4.1.1.6.1.2.0
  • WEP Key Index:   1.3.6.1.4.1.4684.38.2.2.2.1.5.4.2.3.1.2.12
  • WPA PSK:           1.3.6.1.4.1.4491.2.4.1.1.6.2.2.1.5.12
  • SSID:                  1.3.6.1.4.1.4684.38.2.2.2.1.5.4.1.14.1.3.12

SNMP is not enabled by default on these devices, blogged Heiland. However, a number of cable providers that utilize Ubee devices enable SNMP with the community string of “public” on the uplink side of the cable modem for remote management purposes, which makes it possible in those cases to enumerate this data over the Internet, he explained. 

In the case of the Netopia 3347 series of DSL modems, SNMP is enabled by default with the community string of ‘public’ on the internal interface. These devices store the following information with the SNMP MIB tables at the following OID indexes:

  • WEP Keys Index:  1.3.6.1.4.1.304.1.3.1.26.1.15.1.3
  • WPA PSK:             1.3.6.1.4.1.304.1.3.1.26.1.9.1.5.1
  • SSID:                     1.3.6.1.4.1.304.1.3.1.26.1.9.1.2.1

“The DSL side is not enabled by default, but currently a number of DSL providers that still utilize the Netopia 3347 series devices enable SNMP with community string of public on the uplink side of the DSL for remote management purposes,” he blogged. 

This makes it possible to enumerate this data over the Internet, he explained. The modems that were tested are end-of-life, so it is unlikely that firmware updates will be released to address the defaults, he added.

“Of course, just because something is end-of-life doesn’t mean it disappears from the Internet — causal Shodan browsing attests to that,” he blogged. “Further, we cannot know if these configurations persist in current, supported offerings from the vendors, but you might want to check yours when you get a chance to download Metasploit.”

Brian Prince is a Contributing Writer for SecurityWeek.

Previous Columns by Brian Prince:

Tags:


SecurityWeek RSS Feed