Logitech Unifying firmware absent #25
Comments
|
I'm also looking for this too. |
|
If anyone has the original firmware floating around, I'd really appreciate a copy too! |
|
Here's the link to the firmware download https://community.logitech.com/s/question/0D531000055gw8YCAQ I was unable to get the firmware extracted. When I run it nothing happens. |
|
Same problem here, can't get back to old firmware through logitech page. I think we need .hex firmware image. |
|
Here the are, found it under ProgramData inside Windows |
|
Thank you for sharing download page. |
|
@eikaf Thank you for your answer fast. |
|
I don't think you can, probably you should try cgiwin but I don't recommend you doing that. You can try to restore firmware with Logitech tool. But I did not managed to do that. In case let us know. |
|
@eikaf |
|
you can open the the exes with 7zip and extract the file .rsrc\2048\FILES\137 , that'll be your firmware |
|
Does anyone have an old image, so, I can revert to the older, insecure RQR12.01_B0019 firmware? |
|
Necro alert, but still pertinent. The patched RQR12.07.B0029 as well as the insecure RQR12.05.B0028 can be found on github. |
Are you sure? I don't think so. The release notes (https://github.com/Logitech/fw_updates/blob/master/RQR12/RQR12.05/RQR12.05_B0028.txt) say it's patched and I cannot get jackit to work with this version.
These links are expired unfortunatley. Can someone share an old fw please? I'm kicking myself bc I had a vulnerable mouse and then I loaded the nordicresearch image onto it without backing up the old image. Can't find it now. :( |
|
I have the same problem , I cant find an old vulnerable firmware from this git https://github.com/xwings/tuya/tree/master/talks/mousejack/logitech%20firmware The RQR_012_005_00028.hex make my dongle work , but its not vulnerable And if i extract from RQR_024_003_00027.exe = RQR_024_003_00027.rsrc\2048\FILES\137 If anyone have an old firmware please upload |
|
Yes I also extracted RQR_024_003_00027.hex from RQR_024_003_00027.exe using "strings RQR_024_003_00027.exe > RQRstrings.txt" and then just erasing all but the hex for the fw and also just got a bootloader. only the RQR_012_ images seem to work for my receiver but none are vulnerable to keystroke injection. I've also tried all the fw images on the fw_updates github from Logitech and none vulnerable. This is for a receiver that I had tested and confirmed vulnerable several times just hours before so I am fairly certain that it is not human error on my part. Hopefully someone is willing to share a vulnerable image and if nothing else I'll put it up on my github for future researchers. |
|
Anyone knows a way or software to actually dump the firmware of an existing vulnerable dongle ? |
|
@snoremaster3000 i end up buying a dongle on amazon it work , its on 025. |
That's too funny. Their stock is that old. I also found another vulnerable receiver and was able to dump the firmware off of it using logitech-usb-backup.py (can't find this tool in the github anymore for some reason) It saved the firmware in binary format which I dont think will work. It needs some extra bytes added to the beginning too and I don't have time to figure it out at the moment but I will post what I have in case I never get around to it. Definitely vulnerable Probably vulnerable(didn't have time to test this receiver but judging by the release version I would say it probably vulnerable) |
|
Necro alert again, but still relevant. I'v tried the @snoremaster3000 how did you manage to find the firmwares you uploaded ? I have this device, but I would like to dump the vulnerable firmware before patching: Btw the tool I'm interested if anyone can show a way to properly dump the entire firmware. |
|
Update: You can dump the firmware with https://github.com/mame82/munifying Steps to reproduce: |
|
Hi, Any idea how I can analyze the contents of the firmware? Thank you. |
Is there a way to get any .hex version (12 or 24) of Logitech Unifying firmware without Windows installation?
The text was updated successfully, but these errors were encountered: