Hard-coded login leaves Seagate wireless hard drives wide open


— 11:01 AM on September 8, 2015

Nice Seagate wireless hard drive you have there. Shame if anybody on your network had full access to it. Unfortunately, that's exactly what can happen, thanks to vulnerabilities found in some models of the company's external hard drives. A CERT report details the problem, which affects Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and Seagate-powered LaCie Fuel drives.

First and foremost, these drives have "undocumented Telnet services" enabled by default, which can be accessed with the "root" username and a default password. That's enough for anyone on the same network as the drives to gain what is likely system-level access. Attackers could siphon off any or all of the data on the drives, and perhaps plant some neat booby traps or files of their own.

The problems don't end there, though. The drives in question don't fully validate user authorization when browsing files, granting "unrestricted file download capability" to anonymous users on the network. There's an upload vulnerability, as well: with the default configuration, attackers can upload anything they wish to the drives' file sharing partition.

The report indicates that firmware versions 2.2.0.005 and 2.3.0.014 on the above drives are affected, and it doesn't exclude the possibility that other versions may also be vulnerable.

Like what we're doing? Pay what you want to support TR and get nifty extra features.
Top contributors
1. BIF - $340 2. Ryu Connor - $250 3. mbutrovich - $250
4. YetAnotherGeek2 - $200 5. End User - $150 6. Captain Ned - $100
7. Anonymous Gerbil - $100 8. Bill Door - $100 9. ericfulmer - $100
10. dkanter - $100
   
Register
Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.