Resno: Text replacement - "gtvcom-20" to "exploiteers-20"

2016-02-07T01:22:38Z

Text replacement - "gtvcom-20" to "exploiteers-20"

← Older revision		Revision as of 01:22, 7 February 2016
Line 7:		Line 7:
	== Purchase ==		== Purchase ==
	Buying devices is expensive and, in a lot of cases our testing leads to bricked equipment. If you would like to help support our group, site, and research please use one of the links below to purchase your next device.		Buying devices is expensive and, in a lot of cases our testing leads to bricked equipment. If you would like to help support our group, site, and research please use one of the links below to purchase your next device.
	[http://www.amazon.com/Panasonic-DMP-BDT230-Smart-Blu-Ray-Player/dp/B00AYB3OMG?tag=~~gtvcom~~-20 Purchase the Panasonic DMP-BDT230 Blu-Ray Player at Amazon]		[http://www.amazon.com/Panasonic-DMP-BDT230-Smart-Blu-Ray-Player/dp/B00AYB3OMG?tag=exploiteers-20 Purchase the Panasonic DMP-BDT230 Blu-Ray Player at Amazon]

	== UART ==		== UART ==

Zenofex: 1 revision: Moving from DC22 to main site.

2014-08-17T08:22:38Z

1 revision: Moving from DC22 to main site.

← Older revision		Revision as of 08:22, 17 August 2014
(No difference)

Zenofex at 13:31, 5 August 2014

2014-08-05T13:31:37Z

New page

__FORCETOC__
{{Disclaimer}}
[[File:Panasonic-DMP-BDT230.jpg|200px|left|thumb]]
[[Category:Blu-Ray Players]]
This page will be dedicated to a general overview, descriptions, and information related to the Panasonic DMP-BDT230 Blu-Ray player.

== Purchase ==
Buying devices is expensive and, in a lot of cases our testing leads to bricked equipment. If you would like to help support our group, site, and research please use one of the links below to purchase your next device.
[http://www.amazon.com/Panasonic-DMP-BDT230-Smart-Blu-Ray-Player/dp/B00AYB3OMG?tag=gtvcom-20 Purchase the Panasonic DMP-BDT230 Blu-Ray Player at Amazon]

== UART ==
The pin-out for UART can be found on the image below.
<gallery>
File:Panasonic-DMP-BDT230-UART.jpg
</gallery>

== Disassembly ==
<gallery>
File:Panasonic-DMP-BDT230-001.jpg
File:Panasonic-DMP-BDT230-002.jpg
File:Panasonic-DMP-BDT230-003.jpg
</gallery>

== config_file.txt and config_file_global.txt ==
This Blu-Ray player uses a form of binary config files, to modify and parse this we have created the following tools.
* [[http://download.gtvhacker.com/file/panasonic/DMP-BDT230/parse_config.py parse_config.py]] - Parses config files and gives a position that can be used to modify with edit_config.sh
* [[http://download.gtvhacker.com/file/panasonic/DMP-BDT230/edit_config.sh edit_config.sh]] - Modifies a config_file.txt or config_file_global.txt file based on a position and value.

== Network Drive Folder Name Command Injection ==
There is a command sanitization bug within the Network Share "folder name" field. When adding a network share a user is able to use a special syntax to execute root commands on the device.

<gallery>
File:Panasonic-DMP-BDT230-Exploit-001.jpg
File:Panasonic-DMP-BDT230-Exploit-002.jpg
</gallery>

# Click home to go to the main menu
# Hit up on the remotes arrow pad to take you to the "Network" menu
# Press Left on the remotes arrow pad to take you to the "Network Drive" menu.
# Press Up, left, OR right to take you to any of the available types ("Music", "Photos", "Videos")
# Choose "Add a network drive"
# Enter in any IP Address (EX: 127.0.0.1)
# Enter in the command you want to execute within the "Shared Folder Name" field in the following format $(COMMANDHERE). (EX: <code>$(reboot)</code> )
# Enter in any "User ID"
# Enter in any "Password" (EX: a)
# Click "Connect"

DMP-BDT230​​ - Revision history

Resno: Text replacement - "gtvcom-20" to "exploiteers-20"

Zenofex: 1 revision: Moving from DC22 to main site.

Zenofex at 13:31, 5 August 2014

DMP-BDT230 - Revision history