/CiscoDefaultPasswordList_2619151_Final_2-29-f5743bc0a39e4894aadb7e42e15821f0.png "default password to mguard")
Luckily, the page’s source code shows the link to the jar file, which can be Downloaded and executed with `java -jar’
Needing Java 6.x I unpacked an XP VM, which worked just as badly as my current Linux. The router itself can be “accessed” via port 443. The internal interface on both routes presented DHCP and gave me IP addresses, with the Eagle One as router. I then connect a JTAGulator and let it do its magic, sadly also no results.Īs the device’s memory was in BGA, I decided to pause working on the hardware and looking at my other options.
#Default password to mguard serial
My first approach was to connect my Saleae Logic Analyzer and power cycle the device a few times, hoping to see another hidden serial console. With a bit of measuring I created the following tables
ALTERA MAX II EPM240T100I5N N BAJ9M0743AĪnd also three 10 Pin headers, where I had hoped to find some JTAG.The two Ethernet modules can be removed, to make space for the other configuration options, we can see on Belden’s website.Īfter removing the modules, we find a few different chips So, removing the front sticker and a few screws…. The way things are with me, I usually prefer to try physical access vectors before playing with the IP interfaces. So even though, we can just acknowledge all login attempts, we can’t send a valid response. LLDP: System Name = WOEGWRFNBN021-K22z-178-73 System Description = Hirschmann EAGLE Security Device - SW: SDV-05.3.00Ī quick Whois lookup for 53.8.178.73 results inĪlthough a radius server is quickly setup with FreeRadius, authentication isn’t quite as trivial, as the Radius packets are encrypted and authenticated.At some point looking for 10.8.247.1 (ARP).LLDP: System Name = WOEGWUUTUW021-10-8-247-142 Hirschmann EAGLE Security Device - SW: SDV-05.3.00.I set up a simple Linux VM, inserted a USB-NIC, connected the external port of the router and powered it up. I named the devices h1 and h2, just to keep them apart in my documentation. It also has a few status LEDs and a clamp header for the redundant power supply.Īs you can see, the device had been dealt with by NETWAYS, which is German company offering various IT Services. In the version I received, the router is equipped with two Ethernet ports (one for the internal network, one for the uplink), an RJ-11 socket for a serial console and a USB A port. There are a few vulns, on Hirschmann’s side!.Just take the post as a little bit of technical fun and a hard warning on how important safe disposal processes are!.Shit happens no matter how good your processes are! No it’s not about shaming Daimler in any way.Yes, it seems the device belonged to Daimler.For about 25Euro each, they were perfectly in budget and although it was the old and seemingly EOL version, I ordered two and had a look. Needing a victim for an OT related talk, I decided to hit eBay and quickly found a cheap offer for a few Hirschmann industrial router/firewall/VPN node “EAGLE One”.
0 kommentar(er)
