By Waqas
Win32/Malgent!MTB is a generic detection that Microsoft Defender uses to identify Trojans that are designed to perform a variety of malicious actions on a computer. 
This is a post from HackRead.com Read the original post: Microsoft Defender Flags Tor Browser as Win32/Malgent!MTB Malware

The detection of Tor browser’s latest version as Win32/Malgent!MTB malware is likely a false positive.

Microsoft Defender, a popular antivirus program, is apparently falsely flagging Tor Browser as Win32/Malgent!MTB malware. This is causing concern for users who rely on the Tor Browser to protect their privacy and security.

Tor Browser is a free and open-source web browser that uses the Tor network to anonymize browsing traffic. This makes it a popular choice for users who want to protect their privacy online.

Microsoft Defender is detecting the latest version of Tor Browser as malware because it is using a new heuristic detection method that is designed to identify Trojans that use Tor to hide their activity. However, the heuristic method is too broad and also flags the Tor Browser itself as malware.

Users have been reporting the issue. The first screenshot is from a well-known Russian cybercrime and hacker forum, while the rest of the screenshots were sourced from Reddit (Credit: Hackread.com)

****What is the heuristic detection method?****

Heuristic detection is a method of detecting malware that uses rules and algorithms to identify suspicious behaviour. It is different from signature-based detection, which relies on a database of known malware signatures.

Heuristic detection methods can be very effective at detecting new and emerging malware threats, but they can also generate false positives. This is because heuristic detection methods can sometimes flag benign software as malware.

According to Microsoft, its Defender security solution uses a combination of signature-based and heuristic detection methods to protect users from malware. However, the recent false positive detections of Tor Browser suggest that the heuristic detection method in Microsoft Defender may be too broad.

****Win32 Malgent!MTB malware?****

Win32/Malgent!MTB is a generic detection that Microsoft Defender uses to identify Trojans that are designed to perform a variety of malicious actions on a computer.

These actions can include downloading and installing other malware, using the computer for click fraud, recording keystrokes and the websites visited, sending information about the computer, including user names and browsing history, to a remote malicious hacker, giving a remote malicious hacker access to the computer and more.

It is important to note that not all detections of Win32/Malgent!MTB are legitimate. It is possible for false positives to occur, especially when Microsoft Defender is using generic detection methods.

****Tor Browser and Flase Positive Flagging****

While Microsoft has not issued any statement yet, it is expected to release a fix for this issue in a future update to Microsoft Defender. A discussion is already underway on the Tor Project Forums.

Furthermore, although the Tor Project, the organization that develops the Tor Browser, has not yet commented on the issue, they already have a dedicated link addressing anti-malware software and their false positives against the Tor browser. This page states that:

“Some antivirus software will pop up malware and/or vulnerability warnings when Tor Browser is launched. If you downloaded Tor Browser from our main website or used GetTor, and verified it, these are false positives and you have nothing to worry about.”

In the meantime, users who are concerned about being falsely flagged by Microsoft Defender can take the following steps:

*   **Download and install the latest version of Tor Browser** **when available:** The latest version of Tor Browser is less likely to be flagged by Microsoft Defender.
*   **Download and install the previous version for now:** While the latest versions are intended to resolve the issues, users have been reporting that there have been reports of MS Defender detecting issues with the latest version. Therefore, it is advisable to download and install the previous version of the Tor browser (from the official site) until the issue is resolved.
*   **Add Tor Browser to the exclusion list in Microsoft Defender**: This will prevent Microsoft Defender from scanning Tor Browser for malware.
*   **Use a different antivirus program**: There are other antivirus programs available that are less likely to flag Tor Browser as malware.
*   **Use Brave Browser for now**: Brave Browser entered the dark web with its own Tor Onion service in October 2020, enabling users to access .Onion domains directly from the browser.

Nevertheless, if you are using Tor Browser and Microsoft Defender, and you see a notification that Tor Browser is infected with malware, you should not be concerned. This is likely a false positive detection. You can safely ignore the notification and continue using the Tor Browser.

****_RELATED ARTICLES_****

1.  Microsoft Declares Ask toolbar as Dangerous Malware
2.  Hackers are using Microsoft Teams chat to spread malware
3.  Microsoft Office Most Exploited Software in Malware Attacks
4.  Microsoft signed a driver called Netfilter, but it contained malware
5.  Chinese Hackers Using Stolen Ivacy VPN Certificate To Sign Malware
6.  Windows Defender update caught removing zip, exe, source code files

Microsoft Defender Flags Tor Browser as Win32/Malgent!MTB Malware

Every smartphone has an expiration date. Here’s when yours will probably come.

If you're shopping for a smartphone, you're probably weighing how powerful it is, how good the cameras are, and of course how much you're going to have to pay for it—but it's also worth considering how long the handset is going to last you.

A big part of that calculation comes down to the length of time that the phone will get updates. Apple just pushed out iOS 17, a software update that is heading to iPhones including the iPhone XR and the iPhone XS—handsets that launched in 2018.

For five-year-old phones to be getting (mostly) the same software features as the brand new iPhone 15 is something Apple can be proud of and that its users can be grateful for, but this kind of future-proofing isn't standard.

At the time of writing, Google promises Android updates for its Pixel phones for at least three years. For flagship Samsung Galaxy phones, the software update guarantee is for four years, and for the latest Fairphone 5, it's five years.

Pixel phones are covered for three years of software updates.

Courtesy of Google

There's another important time span to consider though, which is the one for security updates. These updates continue to be issued for older phones even after major software updates have finished, so important vulnerabilities can be patched and phones can be kept safe even if they're no longer getting new and improved features.

For Google and Samsung, security updates are provided for five years, while Fairphone is promising at least eight for the Fairphone 5, and possibly as many as 10. Apple doesn't have a fixed approach but tends to issue security updates for a year or two after software updates have finished—after seven years, Apple products are declared obsolete.

You may be planning to upgrade your smartphone before that happens, but not everyone will be—and knowing how long your device is going to be supported with updates from its manufacturer then becomes very important.

If you're struggling to find out this information about a particular gadget, the web can help—and specifically the endoflife.date site, which lists a whole host of hardware devices and software packages. You can see continually updated countdowns for manufacturer support for iPhones, Pixels, Galaxy phones, and more.

When Security Updates End

Software updates keep your phone properly patched up and supplied with the latest new features. In contrast, security updates make sure that a device stays secure and protected against evolving threats even after software updates have stopped. Which then prompts the question: What happens when security updates end?

To begin with, your device isn't going to suddenly stop working and become a useless brick of electronics. Assuming the components inside it are still functioning—which is by no means a given after five or six years—then you can continue to use the device in the same way that you always have.

As time goes on, you might start to notice a problem with some of your apps: Apps will often need the very latest versions of iOS or Android in order to run, and if you're not getting those updates, they may stop working or start misbehaving, or you may find yourself unable to update to the latest versions.

Security is a bigger problem. There will be some legacy protection in terms of the patches you've applied over the lifetime of the device, but your phone is no longer going to be prepared for newer exploits and malware attacks, and that puts your data at risk.

iOS 17 works on the iPhone 15 Pro—and on iPhones from 2018.

Courtesy of Apple

When mobile security vulnerabilities emerge, you'll find that many of them are aimed at older versions of operating systems, versions that don't have all of the necessary defense measures in place. The more time that goes by since the last security update, the bigger the risk you're running by still using your phone.

Apple, Google, and Samsung will often scramble to fix security issues as they're discovered, pushing out updates outside of the regular schedule in order to keep devices protected—and again, your phone is ineligible for these patches, except under rare circumstances, if you've reached the end-of-life stage.

You can choose to keep on using your phone: The usual practices of being careful with apps and websites, turning on two-factor authentication for your accounts, and keeping the lock screen securely locked all still apply, and offer some level of protection. However, your device is at significantly more risk of an attack.

As expensive as it may be, it might be time to think about upgrading your phone so you keep receiving updates—it doesn't have to be a brand-new one to get the latest iOS or Android software. When you do decide to say goodbye to your old handset, be sure to dispose of it responsibly.

How to Tell When Your Phone Will Stop Getting Security Updates

Cross-site Scripting (XSS) - Generic in GitHub repository dolibarr/dolibarr prior to 18.0.

CVE-2023-5323: Fix #hunter7a048bb7-bfdd-4299-931e-9bc283e92bc8 · Dolibarr/dolibarr@695ca08

The device allows an unauthenticated attacker to bypass authentication and modify the Cookie to reveal hidden pages that allows more critical operations to the transmitter.

Title: Electrolink FM/DAB/TV Transmitter SuperAdmin Hidden Functionality  
Advisory ID: ZSL-2023-5794  
Type: Local/Remote  
Impact: Security Bypass, Privilege Escalation  
Risk: (4/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The device allows an unauthenticated attacker to bypass authentication and modify the Cookie to reveal hidden pages that allows more critical operations to the transmitter.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_hidden.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter SuperAdmin Hidden Functionality

The application suffers from a privilege escalation vulnerability. An attacker can escalate his privileges by poisoning the Cookie from GUEST to ADMIN to effectively become Administrator or poisoning to ZSL to become Super Administrator.

Title: Electrolink FM/DAB/TV Transmitter Vertical Privilege Escalation  
Advisory ID: ZSL-2023-5793  
Type: Local/Remote  
Impact: Privilege Escalation, Manipulation of Data  
Risk: (4/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The application suffers from a privilege escalation vulnerability. An attacker can escalate his privileges by poisoning the Cookie from GUEST to ADMIN to effectively become Administrator or poisoning to ZSL to become Super Administrator.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_eop.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter Vertical Privilege Escalation

The application is vulnerable to an unauthenticated parameter manipulation that allows an attacker to set the credentials to blank giving her access to the admin panel. Also vulnerable to account takeover and arbitrary password change.

Title: Electrolink FM/DAB/TV Transmitter Remote Authentication Removal  
Advisory ID: ZSL-2023-5792  
Type: Local/Remote  
Impact: Security Bypass, Privilege Escalation, System Access, Exposure of System Information, Exposure of Sensitive Information, Manipulation of Data  
Risk: (5/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The application is vulnerable to an unauthenticated parameter manipulation that allows an attacker to set the credentials to blank giving her access to the admin panel. Also vulnerable to account takeover and arbitrary password change.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_auth4.py

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter Remote Authentication Removal

The device allows access to an unprotected endpoint that allows MPFS File System binary image upload without authentication. The MPFS2 file system module provides a light-weight read-only file system that can be stored in external EEPROM, external serial Flash, or internal Flash program memory. This file system serves as the basis for the HTTP2 web server module, but is also used by the SNMP module and is available to other applications that require basic read-only storage capabilities. This can be exploited to overwrite the flash program memory that holds the web server's main interfaces and execute arbitrary code.

Title: Electrolink FM/DAB/TV Transmitter Pre-Auth MPFS Image Remote Code Execution  
Advisory ID: ZSL-2023-5796  
Type: Local/Remote  
Impact: Security Bypass, System Access, DoS  
Risk: (5/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The device allows access to an unprotected endpoint that allows MPFS File System binary image upload without authentication. The MPFS2 file system module provides a light-weight read-only file system that can be stored in external EEPROM, external serial Flash, or internal Flash program memory. This file system serves as the basis for the HTTP2 web server module, but is also used by the SNMP module and is available to other applications that require basic read-only storage capabilities. This can be exploited to overwrite the flash program memory that holds the web server's main interfaces and execute arbitrary code.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_upload.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

\[1\] https://documentation.help/Microchip-TCP.IP-Stack/GS-MPFSUpload.html

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter Pre-Auth MPFS Image Remote Code Execution

The transmitter is suffering from a Denial of Service (DoS) scenario. An unauthenticated attacker can reset the board as well as stop the transmitter operations by sending one GET request to the command.cgi gateway.

Title: Electrolink FM/DAB/TV Transmitter Unauthenticated Remote DoS  
Advisory ID: ZSL-2023-5795  
Type: Local/Remote  
Impact: DoS  
Risk: (4/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The transmitter is suffering from a Denial of Service (DoS) scenario. An unauthenticated attacker can reset the board as well as stop the transmitter operations by sending one GET request to the command.cgi gateway.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_dos.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter Unauthenticated Remote DoS

The transmitter is vulnerable to an authentication bypass vulnerability affecting the Login Cookie. An attacker can set an arbitrary value except 'NO' to the Login Cookie and have full system access.

Title: Electrolink FM/DAB/TV Transmitter (Login Cookie) Authentication Bypass  
Advisory ID: ZSL-2023-5791  
Type: Local/Remote  
Impact: Security Bypass, Privilege Escalation, System Access, Exposure of System Information, Exposure of Sensitive Information, Manipulation of Data  
Risk: (5/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The transmitter is vulnerable to an authentication bypass vulnerability affecting the Login Cookie. An attacker can set an arbitrary value except 'NO' to the Login Cookie and have full system access.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_auth3.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Electrolink FM/DAB/TV Transmitter (Login Cookie) Authentication Bypass

The device is vulnerable to a disclosure of clear-text credentials in controlloLogin.js that can allow security bypass and system access.

Title: Electrolink FM/DAB/TV Transmitter (controlloLogin.js) Credentials Disclosure  
Advisory ID: ZSL-2023-5790  
Type: Local/Remote  
Impact: Security Bypass, Privilege Escalation, System Access, Exposure of System Information, Exposure of Sensitive Information  
Risk: (5/5)  
Release Date: 30.09.2023

**Summary**

Since 1990 Electrolink has been dealing with design and manufacturing of advanced technologies for radio and television broadcasting. The most comprehensive products range includes: FM Transmitters, DAB Transmitters, TV Transmitters for analogue and digital multistandard operation, Bandpass Filters (FM, DAB, ATV, DTV), Channel combiners (FM, DAB, ATV, DTV), Motorized coaxial switches, Manual patch panels, RF power meters, Rigid line and accessories. A professional solution that meets broadcasters needs from small community television or radio to big government networks.

Compact DAB Transmitters 10W, 100W and 250W models with 3.5" touch-screen display and in-built state of the art DAB modulator, EDI input and GPS receiver. All transmitters are equipped with a state-of-the art DAB modulator with excellent performances, self-protected and self-controlled amplifiers ensure trouble-free non-stop operation.

100W, 500W, 1kW and 2kW power range available on compact 2U and 3U 19" frame. Built-in stereo coder, touch screen display and efficient low noise air cooling system. Available models: 3kW, 5kW, 10kW, 15kW, 20kW and 30kW. High efficiency FM transmitters with fully broadband solid state amplifiers and an efficient low-noise air cooling system.

FM digital modulator with excellent specifications, built-in stereo and RDS coder. Digital deviation limiter together with ASI and SDI inputs are available. These transmitters are ready for ISOFREQUENCY networks.

Available for VHF BI and VHF BIII operation with robust desing and user-friendly local and remote control. Multi-standard UHF TV transmitters from 10W up to 5kW with efficient low noise air cooling system. Analogue PAL, NTSC and Digital DVB-T/T2, ATSC and ISDB-Tb available.

**Description**

The device is vulnerable to a disclosure of clear-text credentials in controlloLogin.js that can allow security bypass and system access.

**Vendor**

Electrolink s.r.l. - https://www.electrolink.com

**Affected Version**

10W, 100W, 250W, Compact DAB Transmitter  
500W, 1kW, 2kW Medium DAB Transmitter  
2.5kW, 3kW, 4kW, 5kW High Power DAB Transmitter  
100W, 500W, 1kW, 2kW Compact FM Transmitter  
3kW, 5kW, 10kW, 15kW, 20kW, 30kW Modular FM Transmitter  
15W - 40kW Digital FM Transmitter  
BI, BIII VHF TV Transmitter  
10W - 5kW UHF TV Transmitter  
Web version: 01.09, 01.08, 01.07  
Display version: 1.4, 1.2  
Control unit version: 01.06, 01.04, 01.03  
Firmware version: 2.1

**Tested On**

Mbedthis-Appweb/12.5.0  
Mbedthis-Appweb/12.0.0

**Vendor Status**

\[30.06.2023\] Vulnerability discovered.  
\[02.07.2023\] Vendor contacted.  
\[16.08.2023\] No response from the vendor.  
\[17.08.2023\] Vendor contacted.  
\[29.09.2023\] No response from the vendor.  
\[30.09.2023\] Public security advisory released.

**PoC**

electrolink\_auth2.txt

**Credits**

Vulnerability discovered by Gjoko Krstic - <gjoko@zeroscience.mk\>

**References**

N/A

**Changelog**

\[30.09.2023\] - Initial release

**Contact**

Zero Science Lab

Web: https://www.zeroscience.mk  
e-mail: lab@zeroscience.mk

Tag

#web