Publish persistent backdoor? #4
Description
From https://haxx.in/posts/wtm-wtf/
Sorry for asking you/here but I was not able to find contact info from Rick aka PHP HOOLIGANS.
My use case is that I want to keep my printer up-to-date but would also not say no to having persistent root access. You have worked on firmware decryption but from I learned that the firmware is still signed so I cannot get root access this way.
Edit: A simple persistant backdoor could be a custom cgi-bin script with an unused name that opens a reverse shell. This script does not run as root but Rick did not provide a persistent root backdoor either. Maybe the cgi script can be setuid so it would give us root directly?