[12752] in bugtraq
3Com cable modems / Mediaone
daemon@ATHENA.MIT.EDU (Signal 11)
Mon Nov 29 13:45:41 1999
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-Id: <38403A88.57FDA7DE@mediaone.net>
Date: Sat, 27 Nov 1999 14:09:44 -0600
Reply-To: Signal 11 <signal11@MEDIAONE.NET>
From: Signal 11 <signal11@MEDIAONE.NET>
X-To: "BUGTRAQ@SECURITYFOCUS.COM" <BUGTRAQ@SECURITYFOCUS.COM>
To: BUGTRAQ@SECURITYFOCUS.COM
I'm not certain this is the appropriate forum to discuss this,
however I've been unable to locate any documentation about this
on 3Com's website nor has technical support been helpful in
enlightening me (I have called their 800 number).
The 3Com external cablemodem (CMX) allows the upstream provider
to download firmware updates into your cablemodem. This can
(and I suspect usually is) done without the user's knowledge,
and it took some digging to uncover this "feature". The cable-
modem can also be reprogrammed via a serial port in back,
although my attempts to access it have proven futile.
I am also very curious to find out how to telnet into this thing,
as there are references to it being "password protected"
to prevent intruders. Somehow I rather doubt mine was
given a password (and thus open to the whole world).
I'm very much concerned about using a device, which has
little/no technical specifications, with my system.
Can firmware be uploaded by anyone? How does the modem
authenticate the head-end system? Does anyone have any
information on how to reprogram this modem?
--
Signal 11, BOFH to the UF list and malign.net
Where's the DIR command?
