I-Appliance BBS
The Official Source for Internet Appliance Upgrades and Mods
Click Here!
BBS Main List | Sign In | Sign Up | Search | Help | Linux-Hacker.netReply to Thread | Printer |

Home / Other I-Appliances / Intel dot.station
open ports

New Messageopen ports (modified 0 times) jsmmd
Profile
I think this deserves a new topic.

Long story short I have a out of the box dot.bob2. I turned it on, click on the first Spanish dialogue, typed in some digits click the "dial" button.

The machine DHCP'd an IP from my internal router as expected. I did a port scan and came up with:


Starting nmap V. 3.00 ( www.insecure.org/nmap )
Interesting ports on (192.168.1.201):
(The 1595 ports scanned but not shown below are in state: closed)
Port State Service
21/tcp open ftp
23/tcp open telnet
143/tcp open imap2
513/tcp open login
514/tcp open shell
6000/tcp open X11
Remote operating system guess: Linux 2.1.19 - 2.2.20
Uptime 0.004 days (since Mon Jan 19 02:11:18 2004)
Nmap run completed -- 1 IP address (1 host up) scanned in 9 seconds


Anyone know a way to login in through the ports. I've tried standard telnet, ftp, and putty, google'ng, etc... Am I missing something here? A little help please.

---
Back story:

I recently had some free time with the holidays and I had pondered the disassembly issue that we all know too well. The dot is held together by screws. Lots of screws.


In my mental wanders I found myself pondering a line from the Intel Product Brochure:

Zero maintenance software for the consumer — entire software configuration remotely managed using Intel SMS.

Therefore, they must have a accessible service I could possibly exploit to perform the xterm hack, the perform the linux bios flash.

----
If anyone has any interest, please email me and I will pass on my IP to my router which I can put the dot outside of.

jsmmd / MethodicJon
01-17-2004 23:23:54

New MessageRE:open ports (modified 0 times) keith721
Profile
Did you try an SSH login using puTTY, or an rexec/rlogin/rsh command??
I haven't dug through a dot.station in so long, the only other guess I might try is to look for the known SSH buffer overflow hacks, and break in using one of those. Email me your IP/router information privately, and I'll see if I can dig up something for you.
01-19-2004 07:32:18

New MessageRE:open ports (modified 0 times) jsmmd
Profile
keith721,

I tried Putty as you stated. I haven't tried the other commands. I sent you an email with the login info.

01-19-2004 20:32:56

New Message1337 (modified 0 times) sven
Profile
that would be by far the most elegant solution... to hack into the dot station. :) It never occured to me that they would automatically acquire IPs if you plugged them into a network... it would be so much easier than taking them apart. If I have some time I'll try to find a remote root exploit... there is still one unhacked dot laying around in SiliconIce and I's apartment.

-sven

01-21-2004 23:40:13

New MessageRE:open ports (modified 0 times) jsmmd
Profile
I just love VMware Workstation. I have Knoppix loaded up and have tried rsh, ssh, telnet, ftp, and if I can maintain a connection in the case of a telnet session it drops after about 5 seconds. I assume it's waiting for a specific handshake to occur??
01-23-2004 23:15:41

Reply to Thread | Printer |
All times are PSTPowered by UltraBoard v1.62


Copyright © 2000, Netmake Inc. All Rights Reserved.
See Terms and Conditions for more information.




i-opener opener laptop notebook computer help drivers dll free windows dos repair fix linux mac macintosh 2000 95 98 nt pc configure hardware software sound video netscape explorer network networking lan wan software cmos fat bios printer card mouse modem ide scsi cd rom controllers scanner tape hard drive cgi scripts source code mp3