我去 我刚买回来 用了 居然是这样的。我就当个键盘都比你这个好,你开软件收集我们的数据吧?然后再去优 ...
切换喇叭和麦克风的插件是有的,可以到应用市场,下载 Windows快捷工具,里面有 设置麦克风 和 设置音箱 的功能,拖入键盘就可以快捷切换了。 wine 发表于 2025-9-7 10:57
那是你想我们需要。我都在这里说不需要软件!我们要离线模式。你说我需要!!!!!!!!我不要这个软件 ...
The device can send nativ key commands because it is registered as a HID. This works completely without any control software if you have a shell access on the device:
#!/bin/sh
HID="/dev/hidg1"
echo "Send Key 'x'..."
echo -ne '\x00\xE9' > "$HID"
sleep 0.1
echo -ne '\x00\x00' > "$HID"
:victory:
Einstein2150 发表于 2025-10-9 17:26
The device can send nativ key commands because it is registered as a HID. This works completely wi ...
how did you make this device run bash script? aqsz200 发表于 2025-10-9 22:11
how did you make this device run bash script?
There is a vulnerability. I'm root on the device. I wrote 2 mails in 1 week to ULANZI but no reaction ...But the big question is: will it run DOOM?
Yessss!
Einstein2150 发表于 2025-10-10 12:52
There is a vulnerability. I'm root on the device. I wrote 2 mails in 1 week to ULANZI but no react ...
alright... i don't know if the vendor will fix it :)
if not, can you share how did you get the bash script hacked into the system? i'd like to customised the device a little bit
thanks!
aqsz200 发表于 2025-10-10 13:35
alright... i don't know if the vendor will fix it
if not, can you share how did you get the bash...
At the moment my answer is: no
There are some really bad comments about my findings here: Reddit
Maybe ULANZI is contacting me here in the forum or by mail but there is still enougt time for them until potentially disclosure by me.
Einstein2150 发表于 2025-10-10 13:50
At the moment my answer is: no
There are some really bad comments about my findings here: Reddit
just read the post.
I'll try have a look on the unauthenticated path myself
but i agree that how the auth data the software handled is really bad, just plain text stored locally :Q
页:
1
[2]