SOUND4 IMPACT/FIRST/PULSE/Eco 2.x Hardcoded Credentials

SOUND4 IMPACT/FIRST/PULSE/Eco <=2.x (sound4server) Hardcoded Credentials

Vendor: SOUND4 Ltd.

Product web page: https://www.sound4.com | https://www.sound4.biz

Affected version: FM/HD Radio Processing:

Impact/Pulse/First (Version 2: 1.1/2.15)

Impact/Pulse/First (Version 1: 2.1/1.69)

Impact/Pulse Eco 1.16

Voice processing

BigVoice4 1.2

BigVoice2 1.30

Web-Audio Streaming:

Stream 1.1/2.4.29

Watermarking:

WM2 (Kantar Media) 1.11

Summary: SOUND4 IMPACT is an ingenious process that combines mono and stereo sound.

To achieve perfect stereo processing, each part of the signal is processed individually.

Consistency in both sound quality and level. In moving, you must be consistent in sound and level.

reception occurs when the FM receiver changes from mono to stereo and then back again

Stereo reduces the volume and sound variation by more than 90%.

Stereo expander is an option in the SOUND4-IMPACT processing chain

Basically, without limitations.

SOUND4 is a powerful and versatile product that offers advanced functionality.

PULSE offers clients the best price-performance ratio.

It is more than a processor. It is flexible and powerful.

Radio broadcasting standards are fully compatible with the sound quality of this product.

It can also be used for streaming, DAB and FM simultaneously.

SOUND4 FIRST offers all of the essential functions you require

High performance FM/HD processors.

Affordable. This product is designed to produce a high-quality sound.

This tool allows you to perform 2-band processing and a digital stereogenerator.

Clipper for IMPACT

Desc: Server binary contains hard-coded credentials in its Linux and

Windows distribution image. These credentials will never be exposed

The end-user cannot have the device modified by any other operation.

device. You will need the SOUND4 Remote to add/modify additional credentials.

You can control thick clients.

It was tested on Apache/2.4.25 (Unix).

OpenSSL/1.0.2k

PHP/7.1.1

GNU/Linux 5.10.43 (armv7l)

GNU/Linux 4.9.228 (armv7l)

Windows 10

SOUND4 Server v4.1.102

SOUND4 Remote Control v4.3.17

Gjoko “LiquidWorm” Krstic discovered vulnerability

Macedonian Information Security Research and Development Laboratory

Zero Science Lab – https://www.zeroscience.mk – @zeroscience

ZSL-2022-57929 Advisory ID

Advisory URL: https://www.zeroscience.mk/en/vulnerabilities/ZSL-2022-5729.php

26.09.2022

—

> grep -irnH -A2 -B2 “Password=” /opt/sound4/sound4server

/opt/sound4/sound4server-1232889-Active=%s;

/opt/sound4/sound4server-1232890-

/opt/sound4/sound4server:1232891:ActiveOnPassword=%s;

/opt/sound4/sound4server-1232892-

/opt/sound4/sound4server-1232893-

—

/opt/sound4/sound4server-1233290-

/opt/sound4/sound4server-1233291-

/opt/sound4/sound4server:1233292:Password=’hes2faB7Zub7chuF’;

/opt/sound4/sound4server-1233293-UserType=’BrokenConnection_User’;

/opt/sound4/sound4server-1233294-CanBeRemove=false;

—

/opt/sound4/sound4server-1233302-

/opt/sound4/sound4server-1233303-more_rightusers

/opt/sound4/sound4server:1233304:Password=’hes2faB7Zub7chuF’;

/opt/sound4/sound4server-1233305-UserType=’LocalConnection_User’;

/opt/sound4/sound4server-1233306-CanBeRemove=false;

—

/opt/sound4/sound4server-1233312-

/opt/sound4/sound4server-1233313-_local_rds_

/opt/sound4/sound4server:1233314:Password=’FaK7Kaph’;

/opt/sound4/sound4server-1233315-UserType=’LocalConnection_RDS’;

/opt/sound4/sound4server-1233316-CanBeRemove=false;

—

/opt/sound4/sound4server-1233323-_local_vu_

/opt/sound4/sound4server-1233324-

/opt/sound4/sound4server:1233325:Password=’PrE4awrE’;

/opt/sound4/sound4server-1233326-UserType=’LocalConnection_VU’;

/opt/sound4/sound4server-1233327-CanBeRemove=false;

—

/opt/sound4/sound4server-1233331-_local_sw_

/opt/sound4/sound4server-1233332-

/opt/sound4/sound4server:1233333:Password=’bras2awA’;

/opt/sound4/sound4server-1233334-UserType=’LocalConnection_Switch’;

/opt/sound4/sound4server-1233335-CanBeRemove=false;

—

/opt/sound4/sound4server-1233340-

/opt/sound4/sound4server-1233341-

/opt/sound4/sound4server:1233342:Password=’ELhp7e5DkpwVUAfJ’;

/opt/sound4/sound4server-1233343-UserType=’LocalConnection_User’;

/opt/sound4/sound4server-1233344-CanBeRemove=false;

—

/opt/sound4/sound4server-1233363-

/opt/sound4/sound4server-1233364-

/opt/sound4/sound4server:1233365:Password=’bDAtfKJ0′;

/opt/sound4/sound4server-1233366-UserType=’LocalConnection_FrontPanel’;

/opt/sound4/sound4server-1233367-CanBeRemove=false;

—

/opt/sound4/sound4server-1233370-

/opt/sound4/sound4server-1233371-

/opt/sound4/sound4server:1233372: Password=”21232F297A57A5A743894A0E4A801FC3″; // admin

/opt/sound4/sound4server-1233373- UserType=”Superadmin”;

/opt/sound4/sound4server-1233374- CanBeRemove=false;

—

/opt/sound4/sound4server-1233748-

/opt/sound4/sound4server-1233749-

/opt/sound4/sound4server:1233750:Password=”SroqZQesQAJgaLF”;

/opt/sound4/sound4server-1233751-UserType=”_local_LoadPreset_”;

/opt/sound4/sound4server-1233752-CanBeRemove=false;

—

/opt/sound4/sound4server-1237511-

/opt/sound4/sound4server-1237512-

/opt/sound4/sound4server:1237513:Password=””;

/opt/sound4/sound4server-1237514-UserType=”PresetSharing”;

/opt/sound4/sound4server-1237515-UserType=”PresetSharing”;

—

/opt/sound4/sound4server-1237517-CanBeModify=false;

/opt/sound4/sound4server-1237518-Active=false;

/opt/sound4/sound4server:1237519:ActiveOnPassword=true;

/opt/sound4/sound4server-1237520-CanBeList=false;

/opt/sound4/sound4server-1237521-PinEnable=false;

—

> C:>strings.exe “C:Program FilesSOUND4ServerSOUND4 Server.exe” |findstr /spina:d “Password=”

204080:Password=”SroqZQesQAJgaLF”;

204276:Password=””;

204282:ActiveOnPassword=true;

205582:Password=’bDAtfKJ0′;

205589: Password=”21232F297A57A5A743894A0E4A801FC3″; // admin

205594:Password=’ELhp7e5DkpwVUAfJ’;

205605:Password=’PrE4awrE’;

205611:Password=’bras2awA’;

205616:Password=’hes2faB7Zub7chuF’;

205624:Password=’FaK7Kaph’;

205683:Password=’hes2faB7Zub7chuF’;

205836:ActiveOnPassword=%s;

205845:Password=%s;