Patching Vulnerability (?)

slshn · December 27, 2021, 10:50am

hello guys. I bought a blank device. I inserted a 5 terabyte disk with the original operating system installed in it. After running the driver, I turned off the software update check from the settings.The system is running smoothly now. I found this patch.

github.com

pedrib/PoC/blob/master/advisories/Pwn2Own/Tokyo_2020/weekend_destroyer/weekend_destroyer_patch.sh

#!/bin/bash

echo "> weekend_destroyer_patch: patch for 0 day sploit by"
echo "  Pedro Ribeiro (@pedrib1337 | pedrib@gmail.com)"
echo "  Radek Domanski (@RabbitPro | radek.domanski@gmail.com)"
echo "v0.1, released 25/02/2021"
echo ""

echo "> Patching vulnerability and restarting httpd..."

# Yup, this is the only POST with USER_AUTH in the whole file, so this is safe
sed -i 's/<post>USER_AUTH<\/post>/<post>ADMIN_AUTH<\/post>/' /var/www/rest-api/api/System/config/module.config.xml
killall httpd
sleep 1
httpd -f /usr/local/apache2/conf/httpd.conf -k graceful &
sleep 1

echo "> Vulnerability patched. Don't forget to run this script at every reboot!"

Keerti_01 · February 8, 2022, 5:24am

Hi @slshn,

We deeply apologize for the inconvenience caused.

Please be informed that WD does not recommend taking out the internal drive from the enclosure.

We request you to please contact any third-party data recovery services