Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

This page summarizes all known security issues, workarounds and fixes for the beroNet Gateway and Card Firmware. 

ISSUE: files can be downloaded with the GUI without a session

Date Found

The problem has been identified on 08.01.2017. 

Possible Effects

Users can download all files from the Filesystem, including the SIP configuration, the /etc/shadow file or the configuration database. If the attacker downloads the SIP Configuration he is able to make fraud calls. 

How to determine if the Firmware is affected? 

The problem exists in all firmwares 2.X and 3.X. You can simply check if you can download a file with your browser by accessing the Web-URL:

https://IP-Adresse:Port/app/berogui/misc/fileContent.php?filename=/usr/conf/isgw.conf

Workaround & Precautions

To use this attack method http access to the gateway is required. Since in most use cases the gateway is behind a firewall, the http port should only be accessible by authorized administrators. The Firmware provides an ACL configuration.

Fixed Version

The Security hole is fixed starting from the 3.0.14 and the 16.01 Firmware. The 3.0.14 Firmware is planned to be released by 12.01.2017.


  • No labels

If you need scheduled remote assistance, you can request our on-demand support services: https://www.beronet.com/support