Gargoyle Forum

Smoothest upgrade of non-Netgear firmware ever on my WNDR3700v2! Thank you!!

There is a security vulnerability present in all versions of Gargoyle. Just navigate to this url:

http://192.168.1.1/bandwidth.csv

Even when you are not logged in, you can download the traffic logs. Not good!

I found this in 1.5.2, but it should be in 1.5.3 as well.

buggers,

Thanks for the report, I can confirm the issue in the 1.4.x series.

buggers wrote:There is a security vulnerability present in all versions of Gargoyle. Just navigate to this url:

http://192.168.1.1/bandwidth.csv

Even when you are not logged in, you can download the traffic logs. Not good!

I found this in 1.5.2, but it should be in 1.5.3 as well.

Thank you for the report.
Eric has now fixed the problem, for the future versions.

Is Eric able to make this available now or advise if the fix is straight forward to apply - just tested this outside of my network using my WAN IP and I can access this information without any password being required.

I don't think the information is a huge issue, mainly IP addresses as far as I can see but still probably worth closing off sooner rather than later.

** Thinking about it, this is probably because I have remote access enabled, i'll turn this off tonight and hopefully that will close it from the outside. Will test again tomorrow.

not sure if I should upgrade to 1.4.6 now, or wait for next release with the .csv file issue being resolved.

I guess we should be able to upgrade from 1.4.5 to 1.4.7 or 1.4.8 directly.

tals wrote:** Thinking about it, this is probably because I have remote access enabled, i'll turn this off tonight and hopefully that will close it from the outside. Will test again tomorrow.

Confirmed if you turn remote access off then you cannot see this file outside your network, i'll keep remote access off till a fix is around but not so critical now imho.

Hi I just upgraded from 1.3.3 to 1.5.3 via the web interface and everything worked perfectly.

I imported the backup config and that was also perfect.

As far as I can tell everything works except the USB Storage.

The page loads in the web interface but there nothing there.

See below.



Anything I need to do? I have tried rebooting. I dont want to do a reset but I guess I will have to if needed....

Thanks for continually making this better.

Actually - even though the web interface is broken I edited the samba config and it was pointing to the old ntf directory. (The upgrade must have created a new share folder).

Once i changed that I could see the share on the network again.

However the web interface is still broken.

(On a seperate unrelated note transmission bittorrent is working perfectly in this release. So far so good anyway...)

Ports can't be opened. I edited /etc/config/firewall and rebooted the router but no outside port checkers or running daemons on the router can connect to that port. In this case it is transmission that I am concerned with.
Am I looking at this wrong?

luddite wrote:Actually - even though the web interface is broken I edited the samba config and it was pointing to the old ntf directory. (The upgrade must have created a new share folder).

Once i changed that I could see the share on the network again.

However the web interface is still broken.

(On a seperate unrelated note transmission bittorrent is working perfectly in this release. So far so good anyway...)

Ports can't be opened. I edited /etc/config/firewall and rebooted the router but no outside port checkers or running daemons on the router can connect to that port. In this case it is transmission that I am concerned with.

Code: Select all

config 'rule'
        option 'name' 'TRANSMISSION_PORT_TCP'
        option 'src' 'wan'
        option 'proto' 'tcp'
        option 'dest_port' '58499'
        option 'target' 'ACCEPT'

config 'rule'
        option 'name' 'TRANSMISSION_PORT_UDP'
        option 'src' 'wan'
        option 'proto' 'udp'
        option 'dest_port' '58499'
        option 'target' 'ACCEPT'

Am I looking at this wrong?

think you missing one line from each rule.

option 'src_dport' '58499'

also I could be wrong, you dont need option 'target' 'ACCEPT'