How can I control 100 + days of Rongxin security devices within 2 hours?

How can I control 100 + days of Rongxin security devices within 2 hours?

Let's see how I intrude 100 TopSec security devices within two hours, get admin permissions, and build botnets. The firewall, VPN, or something is included. The picture is bloody and terrible !!!!

The "Heartbleed" vulnerability has been around for nearly five months. All major security vendors have said that their devices have been repaired. Have you actually fixed it?

After wooyun, many Daniel submitted such vulnerabilities, but they are all "Heartbleed" vulnerabilities on some devices. Due to the limited quantity, it is impossible to form a strong threat.

Today, "Wolf brother" will take you to "Heartbeat" the 136 security devices of Tian Rongxin to get the admin permission and build a botnet.

Now, we will start to use the batchcompute heartbeat feature for 136 tianrong devices.

(A) First List NGFW4000 (TG-4508-CU) model equipment.

Https: // 183.234.20.148/(account password superman: talent)
 

 

Log on to the device as an administrator.
 

Next, https: // 218.91.210.30
 

Log on to https: // 61.158.253.204 (account password superman: talent)
 

 

(2) In the list NGFW4000 (NGFW4000 (TG-21109) model equipment.

Next, https: // 120.199.19.122/(account password superman: talent)
 

 

(3) list the NGFW4000 (NGFW4000 (TG-11406-VPN) model devices.

Then, log on to https: // 211.98.23.200 (account password superman: talent)
 

 

Through fingerprint features, you can batch log on to tianrong devices. The following 136 devices are found to have the "Heartbleed" vulnerability after capture auditing. The vulnerabilities can be exploited in batch to log on as administrators, control all devices and easily build the desired botnet.

Test code. You are also doing security. This should be available, so don't attach it !!!



The following 136 infected devices have a heartbleed vulnerability! It's easy for you to test the vulnerability group by 15 minutes !!!
 

Code Region

TOPSEC Heartbleed of  1['ip=111.75.254.105', 'ip=61.158.253.204', 'ip=58.62.173.234', 'ip=221.231.122.11', 'ip=123.7.84.170', 'ip=123.7.85.140', 'ip=123.7.84.92', 'ip=123.7.87.52', 'ip=123.7.84.241', 'ip=183.247.178.34', 'ip=218.29.12.121','ip=218.76.215.80', 'ip=219.153.48.134', 'ip=111.39.44.35', 'ip=222.132.86.74', 'ip=221.131.86.40', 'ip=221.206.167.54', 'ip=221.229.114.102', 'ip=218.75.151.24', 'ip=123.133.65.72']TOPSEC Heartbleed of  2['ip=119.254.231.85', 'ip=113.247.235.243', 'ip=113.247.235.86', 'ip=221.13.140.142', 'ip=218.249.32.129', 'ip=218.25.29.94', 'ip=183.234.20.148', 'ip=202.104.33.190', 'ip=218.85.77.106', 'ip=58.222.181.18', 'ip=61.161.205.2', 'ip=61.161.206.50', 'ip=61.161.205.98', 'ip=112.25.139.26', 'ip=112.25.138.211', 'ip=222.88.103.3', 'ip=222.82.91.139', 'ip=218.59.233.219">', 'ip=113.200.76.98', 'ip=60.15.183.228']TOPSEC Heartbleed of  3['ip=210.22.19.27', 'ip=171.8.148.101', 'ip=14.158.211.1', 'ip=111.63.16.83', 'ip=125.39.137.0', 'ip=202.101.149.205', 'ip=116.113.93.50', 'ip=61.158.186.89', 'ip=58.213.122.69', 'ip=58.213.126.138', 'ip=58.213.122.68', 'ip=58.213.123.226', 'ip=60.172.12.142', 'ip=60.172.12.134', 'ip=14.208.55.93', 'ip=123.7.84.43', 'ip=123.7.82.250', 'ip=123.7.83.107', 'ip=113.204.80.51', 'ip=123.150.47.98']TOPSEC Heartbleed of  4['ip=123.150.47.27', 'ip=36.7.150.194', 'ip=113.107.155.66', 'ip=218.21.40.130', 'ip=120.209.81.172', 'ip=125.73.131.235', 'ip=125.46.96.70', 'ip=124.207.168.87', 'ip=58.23.113.32', 'ip=218.94.34.38', 'ip=218.94.39.210', 'ip=218.2.112.242', 'ip=218.95.73.13', 'ip=60.190.165.218', 'ip=61.154.118.109', 'ip=123.84.202.196', 'ip=123.84.202.202', 'ip=61.156.218.11','ip=118.112.181.68', 'ip=60.191.133.39']TOPSEC Heartbleed of  5['ip=60.191.133.53', 'ip=60.191.133.42', 'ip=60.191.133.34', 'ip=60.191.133.59', 'ip=60.191.133.41', 'ip=60.191.133.48', 'ip=60.191.133.36', 'ip=60.191.133.55', 'ip=60.191.133.46', 'ip=60.191.133.54', 'ip=60.191.133.57', 'ip=60.191.133.35', 'ip=60.191.133.60', 'ip=60.191.133.44', 'ip=60.167.63.172', 'ip=27.17.62.242', 'ip=125.46.31.53', 'ip=125.46.30.130', 'ip=124.47.25.18', 'ip=60.29.145.170']TOPSEC Heartbleed of  6['ip=112.80.18.21', 'ip=112.80.18.18', 'ip=112.80.18.20', 'ip=175.19.140.106', 'ip=175.19.140.122', 'ip=120.205.198.214', 'ip=111.75.204.70', 'ip=121.28.76.34', 'ip=121.28.74.251', 'ip=121.28.74.227', 'ip=61.161.205.187">', 'ip=61.184.93.218', 'ip=60.166.23.92', 'ip=60.166.23.180', 'ip=60.166.23.114', 'ip=60.166.23.91', 'ip=60.166.23.90', 'ip=60.166.23.118', 'ip=60.166.23.115', 'ip=60.166.23.93']TOPSEC Heartbleed of  7['ip=60.166.23.94', 'ip=60.166.23.117', 'ip=60.166.23.116', 'ip=125.71.30.160', 'ip=218.91.212.30', 'ip=218.91.214.126', 'ip=218.91.210.30', 'ip=61.187.187.178', 'ip=218.66.50.61', 'ip=218.66.50.198', 'ip=180.173.161.230', 'ip=211.148.172.69', 'ip=113.0.128.154', 'ip=113.0.128.130', 'ip=61.136.184.98', 'ip=124.202.195.54', 'ip=203.88.36.67', 'ip=122.156.220.2','ip=122.156.218.125', 'ip=61.177.143.19']TOPSEC Heartbleed of  8['ip=113.4.133.170', 'ip=113.4.132.99', 'ip=61.48.138.15', 'ip=112.122.11.186', 'ip=112.122.9.36', 'ip=112.122.9.37', 'ip=111.160.178.62', 'ip=60.191.133.51', 'ip=60.191.133.58', 'ip=60.191.133.50', 'ip=60.191.133.43', 'ip=60.191.133.52', 'ip=60.191.133.37', 'ip=60.191.133.49', 'ip=120.38.62.58', 'ip=61.153.76.94', 'ip=61.153.73.66', 'ip=61.153.73.90', 'ip=218.206.210.157', 'ip=202.98.60.114']TOPSEC Heartbleed of  9['ip=202.98.60.122', 'ip=202.98.60.116', 'ip=202.98.60.100', 'ip=202.98.60.125', 'ip=202.98.60.115', 'ip=202.98.60.120', 'ip=202.98.60.103', 'ip=202.98.60.121', 'ip=202.98.60.102', 'ip=202.98.60.118', 'ip=202.98.60.110', 'ip=202.98.60.119', 'ip=202.98.60.113', 'ip=202.98.60.117', 'ip=202.98.60.101', 'ip=183.129.186.109', 'ip=183.129.186.108', 'ip=183.129.186.106', 'ip=183.129.186.107', 'ip=183.129.186.154']TOPSEC Heartbleed of  10['ip=61.187.94.197', 'ip=61.187.94.196', 'ip=123.127.76.52', 'ip=58.213.116.20', 'ip=120.194.66.142', 'ip=122.141.66.210', 'ip=61.181.72.14', 'ip=202.97.177.157', 'ip=58.217.107.178', 'ip=218.28.130.18', 'ip=218.28.130.22', 'ip=218.28.130.106', 'ip=61.167.37.34', 'ip=175.19.208.197', 'ip=118.122.33.239', 'ip=180.168.181.162', 'ip=218.92.37.122', 'ip=106.120.136.254', 'ip=60.30.27.5', 'ip=14.158.215.140']TOPSEC Heartbleed of  11['ip=119.48.73.134', 'ip=119.48.73.126', 'ip=58.211.51.178', 'ip=61.163.127.142', 'ip=61.163.127.34', 'ip=61.163.124.24', 'ip=180.212.94.36', 'ip=60.30.162.10', 'ip=218.3.136.172', 'ip=61.158.111.178', 'ip=60.31.185.66', 'ip=60.31.190.242', 'ip=60.214.69.95', 'ip=120.199.19.122', 'ip=111.26.192.14', 'ip=182.116.61.241', 'ip=113.107.52.4', 'ip=124.133.48.244', 'ip=59.39.58.126', 'ip=211.98.23.200']TOPSEC Heartbleed of  12['ip=1.189.195.124', 'ip=202.104.147.42', 'ip=117.117.117.72', 'ip=218.94.23.114', 'ip=61.191.126.61', 'ip=113.3.56.127', 'ip=61.160.91.18', 'ip=120.44.125.62', 'ip=218.92.10.18', 'ip=59.175.173.178', 'ip=124.207.56.226">', 'ip=113.128.206.130', 'ip=202.100.111.170', 'ip=123.138.180.210', 'ip=180.96.16.182', 'ip=202.207.177.60', 'ip=202.207.177.250', 'ip=202.207.176.62', 'ip=111.160.7.234', 'ip=111.160.0.135']TOPSEC Heartbleed of  13['ip=111.160.2.126', 'ip=111.160.7.250']

Only one lightning is enough !!

Solution:

As a well-known security device manufacturer, Opnell has been working on such a high-risk vulnerability for the past five months and has failed to patch the vulnerability in time. He thinks that it should be paid attention to and considered.

Continue to pay attention to tianrongxin security. I hope you will do better.