TCP-32764

From WikiDevi.Wi-Cat.RU
Jump to navigation Jump to search

TCP-32764 seems to be a backdoor on some, presumably SerComm manufactured, routers and home gateways,

generally indicated by the presence of a process (scfgmgr) listening @ port 32764.

When accessed via telnet, data prefixed by ScMM or MMcS (depending on the system's endianess) seems to be returned.

For actual info, see elvanderb's description and sample Python code.. this is just a stub so I can do my fancy device queries

Confirmed in

This is mostly out of date. Again, see TCP-32764 on GitHub.

Possibly affected

Confirmed not in

SerComm HW

Other Netgear / Linksys HW