• December 12, 2019, 02:21:41 PM
  • Welcome, Guest
Please login or register.

Login with username, password and session length
Advanced search  

News:

This Forum Beta is ONLY for registered owners of D-Link products in the USA for which we have created boards at this time.

Author Topic: Reboot every 50 days + CVE  (Read 3102 times)

nerux

  • Level 1 Member
  • *
  • Posts: 6
Reboot every 50 days + CVE
« on: June 17, 2017, 01:22:48 AM »

Hi,

Device Type    DGS-1100-24 Gigabit Ethernet Switch
Boot PROM Version    Ver 1.00.002
Firmware Version    Ver 1.01.018
Hardware Version    B1

I am proprietary of a DGS-1100-24 since 2 years. I had can see a maximum uptime arround 50 days, It reboot every 50 days. This switch is behind an UPS.

I monitor since september 2016 with munin and snmp :

Code: [Select]
SNMPv2-MIB::sysDescr.0 = STRING: DGS-1100-24 Gigabit Ethernet Switch
SNMPv2-MIB::sysObjectID.0 = OID: SNMPv2-SMI::enterprises.171
DISMAN-EVENT-MIB::sysUpTimeInstance = Timeticks: (19705384) 2 days, 6:44:13.84

I am not sure that a real reboot, because I don't see an interruption on interfaces or services and don't see hole in interfaces's graph. Maybe it's the counter who's reset ?

In different searches about this problem I found this CVE-2016-10125 :(
https://labs.integrity.pt/advisories/dlink-dgs-1100-hardcoded-keys/

Do you think realize a new firmware for fix this two points ?

Regards
« Last Edit: June 17, 2017, 03:22:08 AM by nerux »
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 47982
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Reboot every 50 days + CVE
« Reply #1 on: June 17, 2017, 08:25:43 AM »

Link>Welcome!

  • What region are you located?
Logged
Cable:200mb/10Mb>NetGear C7800>DIR-882>DGS-1100>HP 24pt Gb Switch. COVR-3902/2202/1203,DIR-2680,890L,882,880L,868L,DNR-202L,DNS-345x2,DCS-933L,936L and 960L.
Go Here>Router Troubleshooting

nerux

  • Level 1 Member
  • *
  • Posts: 6
Re: Reboot every 50 days + CVE
« Reply #2 on: June 17, 2017, 10:48:00 AM »

France.
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 47982
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Reboot every 50 days + CVE
« Reply #3 on: June 17, 2017, 11:46:17 AM »

I've passed this along to D-Link USA. I recommend that you phone contact your regional D-Link support office and ask for help and information regarding this. We find that phone contact has better immediate results over using email.
Let us know how it goes please.
Logged
Cable:200mb/10Mb>NetGear C7800>DIR-882>DGS-1100>HP 24pt Gb Switch. COVR-3902/2202/1203,DIR-2680,890L,882,880L,868L,DNR-202L,DNS-345x2,DCS-933L,936L and 960L.
Go Here>Router Troubleshooting

nerux

  • Level 1 Member
  • *
  • Posts: 6
Re: Reboot every 50 days + CVE
« Reply #4 on: June 17, 2017, 11:30:24 PM »

Ok, thanks.
Logged

GreenBay42

  • Administrator
  • Level 10 Member
  • *
  • Posts: 2254
Re: Reboot every 50 days + CVE
« Reply #5 on: June 19, 2017, 06:39:05 AM »

I received BETA firmware v1.01B35 to address this issue as well as other fixes. Let us know if this works for you.

Firmware File --> ftp://FTP2.DLINK.COM/PRODUCTS/DGS-1100-SERIES/DGS-1100_REVB_FIRMWARE_BETA_v1.01.B035.zip

Release Notes --> ftp://FTP2.DLINK.COM/PRODUCTS/DGS-1100-SERIES/DGS-1100_REVB_RELEASE_NOTES_BETA_v1.01.B035.pdf
Logged

FurryNutz

  • Poweruser
  •   ▲
    ▲ ▲
  • *****
  • Posts: 47982
  • D-Link Global Forum Moderator
    • Router Troubleshooting
Re: Reboot every 50 days + CVE
« Reply #6 on: June 19, 2017, 10:06:23 AM »

Thank you Sir.
Logged
Cable:200mb/10Mb>NetGear C7800>DIR-882>DGS-1100>HP 24pt Gb Switch. COVR-3902/2202/1203,DIR-2680,890L,882,880L,868L,DNR-202L,DNS-345x2,DCS-933L,936L and 960L.
Go Here>Router Troubleshooting

nerux

  • Level 1 Member
  • *
  • Posts: 6
Re: Reboot every 50 days + CVE
« Reply #7 on: June 19, 2017, 10:51:01 AM »

Thanks.

Code: [Select]
2 1.01.B035 2572316 2017-03-12 07:45:31
md5sum 9e63f74b4190bbc4e539f71540c7b242  DGS1100-fw_1.01.B035.flash

Could you confirm me the md5sum of DGS1100-fw_1.01.B035.flash file ?

Boot up on beta firmware :
Code: [Select]
Boot PROM Version Ver 1.00.002
Firmware Version Ver 1.01.B035
*2c 1.01.B035 2572316 2017-03-12 07:45:31

The new firmware running on my switch, the configuration is safe.
The interface is slow when I visit the "VLAN" folder under "L2 features".
It arrives to freeze and not responding... I must power off / on the switch for get control, I will roll back.

I confirm the more stability of Ver 1.01.018.

Thanks for your help.

PS : I done the demand of support in europ, no response for the moment.

Best regards
« Last Edit: June 19, 2017, 02:17:58 PM by nerux »
Logged

GreenBay42

  • Administrator
  • Level 10 Member
  • *
  • Posts: 2254
Re: Reboot every 50 days + CVE
« Reply #8 on: June 20, 2017, 07:27:06 AM »

I passed on your results to the product managers to report to the engineers.  Since support is based on region, please continue to contact your regional support and reference this forum. They may be able to get an older version (newer than build 18) for you.

I will post any new information here.
Logged

nerux

  • Level 1 Member
  • *
  • Posts: 6
Re: Reboot every 50 days + CVE
« Reply #9 on: June 21, 2017, 03:31:30 PM »

The european support reply with a new firmware : 1.01.B037 (2572316 2017-06-22 00:14:17)
This one show the same problem (freeze and instability) of version 1.01.B035 (2572316   2017-03-12 07:45:31).
I sent this to the support.

Regards
Logged

GreenBay42

  • Administrator
  • Level 10 Member
  • *
  • Posts: 2254
Re: Reboot every 50 days + CVE
« Reply #10 on: June 22, 2017, 06:38:59 AM »

Thank you for the update.

You could try resetting the switch back to the default settings after the firmware upgrade, but you will need to configure it again.
Logged

nerux

  • Level 1 Member
  • *
  • Posts: 6
Re: Reboot every 50 days + CVE
« Reply #11 on: June 22, 2017, 09:33:38 AM »

Hello,

The european support give me a new firmware :
Code: [Select]
*2c 1.01.B038 2576212 2017-06-22 18:23:25
md5sum c9a5293b21e33f16591ce78d82b39e2a DGS1100-fw_1.01.B038(0426111023).flash

This new version of firmware seem to be stable without resetting the switch. I wait instructions of support team...

Regards
Logged

GreenBay42

  • Administrator
  • Level 10 Member
  • *
  • Posts: 2254
Re: Reboot every 50 days + CVE
« Reply #12 on: June 22, 2017, 09:36:06 AM »

Keep us updated.
Logged