Rom-0 Configuration Decompressor (LZS)

Vulnerable devices
AirLive WT-2000ARM
D-Link DSL-2640R
Huawei 520 HG
Huawei 530 TRA
Pentagram Cerberus P 6331-42
TP-Link TD-8816
TP-Link TD-W8901G
TP-Link TD-W8951ND
TP-Link TD-W8961ND
ZTE ZXV10 W300
ZyXEL ES-2024
ZyXEL Prestige P-2602HW
Date Category Source Title Author
Date Category Source Title Author
2010/06/10 Tool Huawei HG520 /rom-0 decompression tool hkm
2007/05/02 Tool razzor zyxel-revert ES-2024 reverter razzor
2014/01/16 Tool AniDear Hunting for Zyxel rom-0 file decrypter. Sleepya has analyzed the result, and found the specific location for the password for router inside the decompressed file. AniDear
2015/05/17 Tool muratcileli ZynOS / ROM-0 Scanner that scans given IP Range and download / decompresses ROM files of vulnerable ADSL routers. Murat Cileli
2014/06/28 Tool albertobsd rom-0 reader (Spanish version) Luis Alberto Gonzalez Alvarez
2014/01/31 Tool Piotr Bania Hacking and patching rom-0 TP-LINK TD-W8901G. My task was to patch this vulnerability and make the ROM-0 not downloadable. Piotr Bania
2014/11/01 Tool root@nasro How i saved your a** from the zynos (rom-0) attack Abdelli Nassereddine