Tag Archives: firmware

ASUS released new firmware v3.0.0.4.382.50010 for ASUS RT-AC87U router!

News/Releases, , , ,

ASUS has just released a hefty update for RT-AC87U router. It includes quite a long list of security fixes as well as bug fixes and new features. It’s highly recommended to update it!

ASUS RT-AC87U Firmware version 3.0.0.4.382.50010

Security fixed

  • Fixed KRACK vulnerability
  • Fixed CVE-2017-14491: DNS – 2 byte heap based overflow
  • Fixed CVE-2017-14492: DHCP – heap based overflow
  • Fixed CVE-2017-14493: DHCP – stack based overflow
  • Fixed CVE-2017-14494: DHCP – info leak
  • Fixed CVE-2017-14495: DNS – OOM DoS
  • Fixed CVE-2017-14496: DNS – DoS Integer underflow
  • Fixed CVE-2017-13704 : Bug collision
  • Fixed predictable session tokens (CVE-2017-15654), logged user IP validation (CVE-2017-15653), Logged-in information disclosure (special thanks for Blazej Adamczyk contribution)
  • Fixed web GUI authorization vulnerabilities.
  • Fixed AiCloud XSS vulnerabilities
  • Fixed XSS vulnerability. Thanks for Joaquim’s contribution.
  • Fixed LAN RCE vulnerability. An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program
  • Fixed remote code execution vulnerability. Thanks to David Maciejak of Fortinet’sFortiGuard Labs
  • Fixed Smart Sync Stored XSS vulnerabilities. Thanks fo Guy Arazi’s contribution.
  • Fixed CVE-2018-5721 Stack-based buffer overflow.

New features

  • HDD Hibernation
  • URL filter black/white list
  • Bandwidth limiter on guest network
  • URL filter support https website

Bug fixed

  • Fixed CTF related issues
  • Fixed AiCloud smart sync issue.
  • Fixed client icon modification issue when client name includes special characters.
  • Fixed AiCloud smart sync problem.

Grab it here:
https://www.asus.com/us/Networking/RTAC87U/HelpDesk_BIOS/

ASUS released new firmware v3.0.0.4.380.7743 for ASUS RT-AC87U router!

News/Releases, , , ,

ASUS RT-AC87U Firmware version 3.0.0.4.380.7743

Security fixed
– Fixed CVE-2017-5892 (JSONP Information Disclosure)
– Fixed CVE-2017-7494 (Samba remote code execution vulnerability
– Improved brute-force protection for SSH, Telnet connection.

Bug fixed
– Fixed web history issue.
– Fixed URL filter, keyword filter, network filter time related issue.
– Fixed USB Modem/ Tethering UI issue.

Grab it here (select “Others” as OS version):
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

ASUS released new firmware v3.0.0.4.380.7266 for ASUS RT-AC87U router!

News/Releases, , , ,

ASUS RT-AC87U Firmware version 3.0.0.4.380.7266

Bug fixed
– Fixed Android phone tethering mode detecting issue in quick internet setup process.
– Fixed PPPoE related issue.
– Fixed client rename issue in network map.
– Fixed network tool issues.
– Fixed wake on lan issues.

Modification
– Added automatic standby mode for CE Ecodesign directive.

Grab it here (select “Others” as OS version):
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

ASUS released new firmware v3.0.0.4.380.4180 for ASUS RT-AC87U router!

News/Releases, , , ,

ASUS has released a larger bug and security update for the RT-AC87U router.

ASUS RT-AC87U Firmware version 3.0.0.4.380.4180

Security related
– Updated OpenSSL library to 1.0.2j to fix security issues.
– Updated Dropbear SSH to 2016.74 to fix security issues.
– Fixed a security vulnerability regarding XSS.
– Fixed a security vulnerability regarding CSRF.
– Added protection for Brute-force attack.

Bug fixed
– Fixed Chrome, Edge and IE compatibility issues.
– Fixed quick internet setting wizard compatibility issues.
– Fixed NAT issue caused by UPnP media server.
– Fixed dual wan issues in PPPoE or PPTP or L2TP + DHCP environment.
– Fixed AiCloud related issues.

Modified
– Updated NAT Acceleration setting help message.
– Supported Google DDNS .
– Modified the Quick Internet Setting wizard behavior to enhance compatibility.
– Enabled smart sync under AP/Media Bridge.
– Supported new 3G/LTE USB dongle, Docomo L-03D.

Grab it here (select “Others” as OS version):
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

Disable indicator LEDs on Netgear R7000 with Shibby Tomato

Resolving problems, , , , , , , ,

If you’re using Netgear Nighthawk X3 (R7000) with Shibby Tomato firmware and you hate blinking indicator LED lights on top of the router, here is a trick to turn most of them off and stop them from blinking. I still haven’t figured all out, but I found many control so far for individual LEDs.

Just login to your router, go to Administration and then Scripts

Tomato_LED.png

Copy this text to Scripts (Init) field, like example shown above in the image. Commands can be stacked together to achieve desired effect.

Red/white POWER LED
WHITE: gpio enable 3
RED: gpio disable 3

Red/white WAN LED
WHITE: gpio enable 8
RED: gpio disable 8

Disable only WAN LED
et robowr 0x0 0x1a 0x0

Disable/enable only LAN LED’s
DISABLE: et robowr 0x0 0x16 0x0
ENABLE: et robowr 0x0 0x16 0x1ff

Disable WAN and LAN LEDs
et robowr 0x0 0x18 0x1ff
et robowr 0x0 0x18 0x0
et robowr 0x0 0x1a 0x0

Enable/disable WPS Button LED
gpio enable 14
gpio disable 14

Enable/disable Wireless Button LED
gpio enable 15
gpio disable 15

Enable/disable USB1 LED
gpio enable 17
gpio disable 17

Enable/disable USB2 LED
gpio enable 18
gpio disable 18

Click Save button below and then Reboot… on the left side since the script kicks in on router initialization. After router reboot, settings should take effect.

Will update this as I find more functional commands…

ASUS released new firmware v3.0.0.4.380.3459 for ASUS RT-AC87U router!

News/Releases, , ,

Asus has released a small bugfix update for the RT-AC87U router.

ASUS RT-AC87U Firmware version 3.0.0.4.380.3459

Bugfix:
Fixed GUI issue in IPv6 environment.

Grab it here (select “Others” as OS version):
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

ASUS released new firmware v3.0.0.4.380.3264 for ASUS RT-AC87U router!

News/Releases, , ,

ASUS RT-AC87U Firmware version 3.0.0.4.380.3264

ASUS has been dedicated to cooperate with third party developers to come up with more innovative features.
To comply with regulatory amendments, we have modified firmware verification rule to ensure better firmware quality.
This version is not compatible with all previously released ASUS firmware and uncertified third party firmware.

Security Fixed
– Fixed Samba Badlock CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP)
– Fixed Samba Badlock CVE-2016-2111 (NETLOGON Spoofing Vulnerability)
– ASUS firmware did not enable Samba LDAP, and not affected by CVE-2016-2112 (LDAP client and server don’t enforce integrity) issue.
– The Samba version in ASUS firmware was not affected by
CVE-2016-2118 (SAMR and LSA man in the middle attacks possible)
– The Samba version in ASUS firmware was not affected by
CVE-2015-5370 (Multiple errors in DCE-RPC code)
– Fixed command injection issue. Thanks for Chris’ contribution.
– Fixed XSS issue. Thanks for Chris’ contribution.

Bug Fixed
– Fixed Windows Radius server compatibility issues.
– Fixed 5G performance issue when using bandwidth monitor.
– Fixed bandwidth monitor incorrect number problem.
– Fixed setup wizard redirect issue when router automatically changed LAN IP in IP conflict case.
– Modified setup wizard process when router detected DHCP and PPPoE at the same time.
– Fixed bandwidth limiter bug when there are multiple clients in rule list.
– Fixed NTP automatically sync issue when router rebooted
– Fixed Safari slow response issue.
– Enhance AiCloud dynamic stream port mechanism (please also keep AiCloud app up to date)
– Fixed AiCloud share link related issues.
– Fixed Media Server/DLNA related issue.

Grab it here (select “Others” as OS version):
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

ASUS released new firmware v3.0.0.4.378.9529 for ASUS RT-AC87U router!

News/Releases, , ,

ASUS RT-AC87U Firmware version 3.0.0.4.378.9529

Changelog:

  • Fixed Multicast issue when WAN is PPPoE/ PPTP/ L2TP
  • Fixed IPTV GUI issue
  • Fixed two guest networks had same mac address problem.
  • Fixed view list in network map cannot be closed.
  • Fixed network map device icon issue
  • Fixed client cannot get new IP when changed router IP and subnet mask.
  • Fixed wrong notification when using quick internet setup wizard in static IP environment.
  • Fixed wrong notification when client was blocked by Time scheduling.
  • Fixed ASUS Router App related issues.
  • Fixed DNS response error issue.

Grab it here:
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

ASUS RT-AC87U Firmware version 3.0.0.4.378.9383 released!

News/Releases, , ,

ASUS relased a new firmware for their RT-AC87U router…

ASUS RT-AC87U Firmware version 3.0.0.4.378.9383

– Added Movistar Triple VLAN profile in IPTV setting page
– Fixed too many repeat information in system log.
– Fixed Traffic analyzer issue UI issue when changing the data.
– Added workaround for Android devices power drain issue.
– Fixed Adaptive QoS bandwidth setting issue.
– Fixed low samba transfer throughput issue when enable bandwidth limiter.
– Fixed web history related issue.
– Fixed abnormal bandwidth increasing in bandwidth monitor.
– Fixed VPN client UI issue when using Firefox.
– Fixed wireless channel issue when set 2.4G channel in 12 or 13 (only for EU region)
– Fixed dual wan ping time watch dog issue which might cause .false fail over to secondary wan.
– Fixed Bandwidth monitor and Web history UI issue which was caused by “<” or “>” in SSID.

DOWNLOAD:
http://www.asus.com/us/Networking/RTAC87U/HelpDesk_Download/

Update Huawei Ascend P7 L10 to Android 5.1.1 !

Mobile Devices, , , , ,

UDPATE: Because of certain issues with the initial article, I’ve researched the update process thoroughly and updated the article accordingly, to resolve the initial direct B830 update issues.

I was a bit tired of waiting for the stupid Android 5.1.1 (Lollipop) update to show up within the phone updater, so I’ve taken things into my own hands…

Here is what you need:

  • Huawei Ascend P7 (unbranded European P7-L10 only!) smartphone with fully charged battery
  • microSD card inserted in the phone
  • USB cable
  • 7-zip, WinRAR, PeaZip or other archiver capable of unpacking archives with updates

Plus the following updates:

Latest update:

You have to first have B839 installed on your phone before you can upgrade to B852. OTA updates are incrimental and they have to be installed in a correct order! B839 -> B852 !

This update ONLY supports following existing builds:

P7-L10V100R001C00BXXX
P7-L10V100R001C900BXXX

Check Settings -> About Phone -> Build number if numbers match. In my case, the first one was a match, the XXX can be any number, it was 135 in my case followed by SP04. But I don’t think that’s important. BXXX numbers however are very important!

If they don’t match, anything you do in advance is on your own risk! I recommend you don’t update it if the version numbers don’t match.

Updating process for versions lower than B621

I recommend wiping the phone prior updating to avoid potential issues. Backup your internal data and transfer/deactivate your Google Authenticator codes before you perform factory reset!

  1. Download B621 firmware, unpack archive and copy entire dload folder to your Ascend P7 microSD card root using USB cable.
  2. Turn off your phone. Wait for it to fully shut down.
  3. Press VolumeUp+Power buttons and release them when logo appears on screen.
  4. Select Wipe Cache partition and then Wipe data/factory reset.
  5. Restart the phone and skip all the first start settings.
  6. Shut down the phone.
  7. Press VolumeUp+VolumeDown+Power buttons until the phone starts. This will force install B621 update.
  8. Download B621 CUST Hotfix, unpack it and copy entire dload folder to microSD card. This will replace old update files (confirm overwriting the files).
  9. Shut down the phone.
  10. Press VolumeUp+VolumeDown+Power buttons until the phone starts. This will force install B621 CUST Hotfix update.
  11. Download B830, unpack it and copy entire dload folder to microSD card. This will replace old update files (confirm overwriting the files).
  12. Shut down the phone.
  13. Press VolumeUp+VolumeDown+Power buttons until the phone starts. This will force install B830 update.
  14. Download B839, unpack it and copy entire dload folder to microSD card. This will replace old update files (confirm overwriting the files).
  15. Shut down the phone.
  16. Press VolumeUp+VolumeDown+Power buttons until the phone starts. This will force install B839 update.
  17. DONE!
  18. Setup your phone by adding Google Account or simply factory reset it again for first start setup wizard to appear.

It looks complicated, but after step 7, it’s basically a repeating task for each build.

Updating process if you are running a version B609 or newer

If you’re using B609 or later (because your phone arrived with it when new or it updated itself to this version), you should be fine updating directly to B839, but you strictly have to use a full version update which is around 1,5 GB in size (the above link).

Updating process if you have already updated directly to B830 or B839 and you’re experiencing functionality problems

If you have upgraded from lets say B135 directly to B830 or B839, like I have, you have most likely experienced several issues after doing factory reset. Missing keyboard, lockscreen and wallpaper images locked together, missing Motion Control settings etc. In this case you have to first downgarde your phone back to B621. You have to use the same chain of upgrades, just in reverse to downgrade your phone. I had B839 installed, so I had to first downgrade it to B830 and then B621. Made a factory reset and then repeated the above B621 updating process, step by step. Updater may say that firmware upgrade failed in the very end of each downgrade, but don’t worry, it will work anyway. You can check your build version number on each downgrade step if you want to be sure. Going back from B621 to B839 should not show any more FAILED messages. It should successfully update them.

Why all these problems appear?

Apparently the CUST issues happen when manually transitioning from Huawei’s EMUI 2.x custom interface to latest versions that use EMUI 3.x. It somehow conflicts. But if it’s already running EMUI 3.x, there should be no problems updating directly to latest version.

Synopsis

Everything is working perfectly now, no issues, no missing features, just the latest OS and super smooth functionality. From now on, you should receive updates through integrated updater or by new builds (I might update the article with that in the future). Android 6.0 (Marshmallow) is allegedly also planned even for Ascend P7, so it might be interesting. We’ll see…

Enjoy!

PS: If you need any extra info, ask me down below and I’ll check it out for you.