Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision Next revisionBoth sides next revision | ||
| toh:zte:mf287 [2024/02/12 11:13] – external edit | toh:zte:mf287 [2024/08/07 08:26] – Clarify installation procedure andyboeh | ||
|---|---|---|---|
| Line 58: | Line 58: | ||
| ==== Option 1: Install from OEM firmware ==== | ==== Option 1: Install from OEM firmware ==== | ||
| + | <WRAP round important 80%> | ||
| + | **Required files** | ||
| - | You need an exploit to get access to the stock firmware. Prepare the following: | ||
| - | |||
| - | * TFTP server - tftpd-hpa on Linux is tested, but tftpd32 should work as well | ||
| * Static build of busybox for ARM, e.g. from https:// | * Static build of busybox for ARM, e.g. from https:// | ||
| + | * exploit.dat from https:// | ||
| + | * OpenWrt factory image - this is **not** listed in the table above. Please download it from [[https:// | ||
| + | </ | ||
| + | |||
| + | Then do the following preparatory steps: | ||
| + | |||
| + | * Set up a TFTP server - tftpd-hpa on Linux is tested, but tftpd32 should work as well | ||
| * Rename busybox to " | * Rename busybox to " | ||
| - | | + | * Put the OpenWrt |
| - | | + | |
| * Assign your computer the IP address 192.168.0.22 | * Assign your computer the IP address 192.168.0.22 | ||
| Line 72: | Line 77: | ||
| - Log in to the web interface of your router, go to settings restore and use the file " | - Log in to the web interface of your router, go to settings restore and use the file " | ||
| - Watch your TFTP server serving the file " | - Watch your TFTP server serving the file " | ||
| - | - Use a Telnet client and connect to 192.168.0.1 | + | - Use a Telnet client and connect to 192.168.0.1 |
| - | - Login as user " | + | - You should be logged in immediately, |
| - Execute the following commands to take a backup and to install OpenWrt (NB: Instead of using tftp, you should also be able to use '' | - Execute the following commands to take a backup and to install OpenWrt (NB: Instead of using tftp, you should also be able to use '' | ||
| <WRAP round important 80%> | <WRAP round important 80%> | ||
| - | For the MF287Pro, you need to replace '' | + | For the MF287 and MF287+, you need to replace |
| + | For the MF287Pro, you need to replace '' | ||
| </ | </ | ||
| <WRAP round important 80%> | <WRAP round important 80%> | ||
| Please double-check the partition number by running '' | Please double-check the partition number by running '' | ||
| + | </ | ||
| + | |||
| + | <WRAP round important 80%> | ||
| + | Please double-check that you flash the correct file. The factory image is **not** part of the table above, but it can be downloaded from the [[https:// | ||
| </ | </ | ||
| Line 93: | Line 103: | ||
| tftp -g -r zte.bin 192.168.0.22 | tftp -g -r zte.bin 192.168.0.22 | ||
| cat / | cat / | ||
| - | flash_erase /dev/mtd13 0 0 | + | flash_erase /dev/mtdXX 0 0 |
| - | dd if=zte.bin of=/dev/mtdblock13 | + | dd if=zte.bin of=/dev/mtdblockXX |
| reboot | reboot | ||
| </ | </ | ||
| Line 164: | Line 174: | ||
| return False | return False | ||
| | | ||
| - | exploit = "; | + | exploit = "; |
| out = bytearray() | out = bytearray() | ||
| for char in exploit: | for char in exploit: | ||