Jump to content

Zeroshell

From Wikipedia, the free encyclopedia
Zeroshell
DeveloperFulvio Ricciardi
OS familyLinux (Unix-like)
Working stateDiscontinued
Source modelOpen source
Initial releaseJune 2006; 18 years ago (2006-06)
Final release3.9.5 / 16 January 2021; 3 years ago (2021-01-16)
PlatformsIA-32, x86-64, ARM
Kernel typeMonolithic
LicenseGNU GPL
Official websitewww.zeroshell.org

Zeroshell is a small open-source Linux distribution for servers and embedded systems which aims to provide network services.[1][2] Its administration relies on a web-based graphical interface; no shell is needed to administer and configure it. Zeroshell is available as Live CD and CompactFlash images, and VMware virtual machines.

Zeroshell can be installed on any IA-32 computer with almost any Ethernet interface. It can also be installed on most embedded devices and single-board computers such as Raspberry Pi and Orange Pi.[3]

The project reached EOL in April of 2021 with the version 3.9.5.[4] There are several known vulnerabilities for various versions of this software: V2, V3.6x up to V3.7, V3.9.0, V3.9.3 and last V3.9.5 for example,[5] allowing an attacker to e.g. gain root access to the device easily. The main attack vector is the cgi script in use, 'kerbynet'.

Selected features

[edit]

See also

[edit]

References

[edit]
  1. ^ Zeroshell | LinuxBSDos.com
  2. ^ 13 weird and wonderful niche Linux distros of 2018 | TechRadar
  3. ^ Supported Hardware - Zeroshell Linux Router
  4. ^ "Zeroshell End of Life". 18 April 2021.
  5. ^ "CVE Details, List of security vulnerabilities ZeroShell". 17 June 2022.
[edit]