The accompany ’s OLTs are uncommitted for leverage under various marque , let in BLIY , OptiLink , V - SOL CN , and C - Data , pop the question memory access to numerous client ( in some example up to 1024 ) , with some of the device feign also hold up multiple 10 - Gb uplink . surety researcher Pierre Kim and Alexandre Torres attain that many exposure bear upon the FD1104B and FD1108SN OLTs , let in a telnet host that can be get at from both the WAN and FTTH LAN user interface . backdoor credential have been recover to alter between firmware interlingual rendition ( describe mate admit suma123 / panger123 , guest/[empty ] , radical / root126 , debug / debug124 ) and marketer but do allow access to the strike gimmick . The researcher as well describe that an intruder with back entrance admission to the OLT can slip executive credential through the mastery - origin port ( CLI ) . The aggressor can and so economic consumption the imbed webserver to work the feasible CLI admittance to perform instruction as take root and exfiltrate data . The researcher detect during their investigation that a telnet waiter melt down on the twist and approachable from the WAN port can be misuse to resume the system of rules remotely , without authentication . In addition , they launch that entanglement and telnet credentials and SNMP biotic community could be pull up without certification , and credential salt away in plain stitch textbook . The encryption algorithm employ to stock word utilise XOR with a hardcoded assess , and remote control assure of SSL / TLS connector is not bear . The researcher discover additional touch on fashion model through unchanging analysis , viz. 72408A , 9008A , 9016A , 92408A , 92416A , 9288 , 97024P , 97028P , 97042P , 97084P , 97168P , FD1002S , FD1104S , FD1104SN , FD1204S - R2 , FD1204SN , FD1204SN - R2 , FD1208S - R2 , FD1216S - R1 , FD1608GS , FD1608SN , FD161616SN , and FD8000 . The exposure were key in December 2019 , and this hebdomad the research worker in agreement to in public divulge their consequence , arrogate some of the backdoor were “ deliberately set up by the marketer ”