fasadwinning.blogg.se

1. HUAWEI HG532E FIRMWARE UPDATE UPDATE
2. HUAWEI HG532E FIRMWARE UPDATE FULL
3. HUAWEI HG532E FIRMWARE UPDATE PASSWORD
4. HUAWEI HG532E FIRMWARE UPDATE DOWNLOAD

The procedure requires physical access to the device to reset it and use the default administrator user to export configuration – this cannot be construed as a vulnerability. The information in this article is only meant to provide a way for individual users to (re)obtain administrator access on devices locked down by the ISP and be able to access all functionality features. To clear things up, this article never meant to expose a security vulnerability (I never used such terms). PS #2: I would like to thank Huawei for the attention of publishing a security notice on their site related the content of this article. You can check if the file is plain text or encoded by opening it with Notepad++/Notepad or looking at its size (around 200K means it’s plain text, around 20K is encoded). If you’re lucky and your ISP does the same you can skip the decoding/encoding steps.

HUAWEI HG532E FIRMWARE UPDATE UPDATE

PS: After a recent firmware update my ISP disabled configuration file encoding.

HUAWEI HG532E FIRMWARE UPDATE FULL

Wait for it to reboot and you’re done – you can now login with full administrator privileges. Repeat the initial steps (reset the configuration and disconnect the WAN) to re-obtain access to the interface and restore the modified configuration file (through System Tools > Configuration File). Re-encode the config file with:Īescrypt2_huawei.exe 0 modified.xml hw_ctree.xml For that, edit its UserLevel variable and set it to 0 (like the second user).īrowse around for other things you might want to change (that are not exposed in the web interface) and save your changes. If you don’t want to mess with the ISP’s login you can modify the root user to have administrator-level permission. If you want to, you can change them to whichever values you choose – keep in mind the hash is obtained with double hashing: SHA256(MD5('password'))

HUAWEI HG532E FIRMWARE UPDATE PASSWORD

The root password hash should be the same if you did not change the password from the default admin. Your file would probably have a different second username and password hash (set by your ISP). Browse around and look for the following section: You can now open up and edit the XML file. Decoding the configuration fileĭownload aescrypt2 and run the following commandĪescrypt2_huawei.exe 1 hw_ctree.xml decoded.xml You will not be able to read this file directly as it is both gzipped and encoded.

HUAWEI HG532E FIRMWARE UPDATE DOWNLOAD

You can now navigate to System Tools > Configuration File and download the settings file. When done the connections should appear in Status > WAN Information. Reconnect the optical link and wait for it to retrieve the operator settings. Once you’re logged in, remember to browse around as the authentication has a timeout. Wait for it to power on and start the web interface and you should be able to login with the administrator-level telecomadmin / admintelecom login (unless your ISP installed a custom firmware). WAN interface connection underneath the router Disconnect the WAN (optical connection) while the router is rebooting. Go into the System Tools section and do a settings reset. Obtaining the configuration fileĪssuming the WAN interface was previously connected and the router fetched its auto-configuration from the ISP and the superadmin user is locked out, enter the administration interface with the standard root / admin login. So I read around and found the tools and method of obtaining, extracting and modifying the configuration file to suit my needs. But that would never be enough in the long run. This gave me a window of configuring the device all in one go and then leaving it there with the administrator interface locked out. Fortunately, one can authenticate in the web interface before the device retrieves the configuration and the session remains valid until logoff (or timeout). Still work, but as soon as its WAN gets connected it grabs the configuration from the ISP and the administrator login gets changed. The Huawei my ISP uses comes with manufacturer firmware and blank configuration, so the default logins ofĪdministrator: telecomadmin / admintelecom However, as I was already using the fully configured DDWRT-ed Netgear WNDR4500v2 router for all my networking tasks, I needed to turn the Huawei into a media converter and assign the static IP on the Netgear – not the easiest task as it appears. My ISP upgraded my connection from VDSL to fiber and gave me new hardware to go with it – the Huawei HG8247H GPON.