TS1000 Series Firmware Updater for Windows Version 1.66

 Name		  TS1000 Series Firmware Updater
 Version		  1.66
 File		  ts1000-v166.zip
 Size		  396,184,220 bytes
 Date		  February 27, 2020
 Platform		  Windows PC
 OS		  Windows 10 (64- and 32-bit), 8.1 (64- and 32-bit), 8 (64- and 32-bit), 7 (64- and 32-bit), Vista (64- and 32-bit)
		  Windows Server 2012, 2008, 2003
 Models		  TS1200D, TS1400D, TS1400R
 Copyright		  Buffalo Inc.
 Distribution	  .ZIP archive
 Condition	  Re-distribution is not allowed.
 Manuals		  Quick setup guide, user manual
This product uses GPL/LGPL applicable software and you are welcome to keep, modify, and redistribute the source code. Please ask our technical support representatives about modified GPL and applicable modules, and how to deliver them. You may be charged for the delivery cost.

[Software Description]
This software will update the TS1000 series TeraStations’ firmware to version 1.66. If your unit’s firmware is already version 1.66 or later, you don’t need this update.

[How to Verify the Firmware Version]
Select your TeraStation from NAS Navigator2. The firmware version is displayed on the bottom right corner of the window.

[Updating Firmware]
• Please consult technical support or your local customer service representative if the firmware update causes unexpected problems.
• Do not turn off the TeraStation until the firmware update is completed and the “finished” message is displayed.
• USB drives may not be mounted automatically after updating the firmware. To mount them, unplug and then reconnect them.

[Note]
• When you open Settings after updating to this firmware version, information on the page such as the hostname may not be displayed properly. In such a case, clear the web browser cache and try again.

[How to Update the Firmware]
1. Connect the TeraStation and a computer to run the updater on the same network subnet. The subnet masks should be the same and the first three numbers of the IP addresses should be the same. The last number of the IP addresses should be different.
For example, if the IP address and subnet mask of the computer are “192.168.0.10/255.255.255.0” and the IP address and subnet mask of the TeraStation are “192.168.1.150/255.255.255.0”, then the updater will not work properly. In such a case, reconfigure the TeraStation’s IP address and subnet mask to “192.168.0.150/255.255.255.0”. Then, they will be on the same subnet and the updater will work properly.
2. Exit all applications. Also, stop or exit any firewall software.
3. Extract the downloaded file and run “TSUpdater.exe”. When a TeraStation is detected, an update window will open.
4. If multiple TeraStations are connected to the network, select which TeraStation to update.
5. Click ‘Update’ and enter the TeraStation’s admin password.
6. Click ‘OK’.
7. It will take several minutes for the firmware to update. During the update process, the info LED will blink. Don’t disconnect or power down the TeraStation until the update is finished.
8. When the update is finished, a message will be displayed.

[Release Notes]
Version 1.66 [2020-02-27]
Added and Modified Features
[Drives]
• Modified so that when a drive with S.M.A.R.T. disabled is inserted, S.M.A.R.T. will be automatically enabled.

Bug Fixes
[System]
• Modified to patch vulnerabilities (CVE-2015-8325, CVE-2016-1908, CVE-2016-6210, CVE-2016-6515, CVE-2016-10009, CVE-2016-10010, CVE-2016-10011, and CVE-2016-10012).

Version 1.65 [2019-11-11]
Bug Fixes
[System]
• Modified to patch vulnerabilities (CVE-2018-13318, CVE-2018-13319, CVE-2018-13320, CVE-2018-13321, CVE-2018-13322, CVE-2018-13323, and CVE-2018-13324). Due to this change, you will be required to enter the username and password for certain actions, even when opening Easy Admin.

Version 1.64 [2019-02-04]
Added and Modified Features
• Improved the security level.

Version 1.63 [2018-01-29]
Bug Fixes
[SMB]
• Modified to patch a Samba programming vulnerability (CVE-2017-15275).

Version 1.60 [2017-07-06]
Bug Fixes
[SMB]
• Modified to patch a Samba programming vulnerability (CVE-2017-7494).

[Replication]
• Added the field to enter a backup device access key. This access key is the same as the one used for backup jobs.

Version 1.50 [2016-09-20]
Bug Fixes
[Email Notification]
• Fixed a bug where some notification emails were detected as spam by a mail server. To address this issue, the “Sender Address” field has been added to the email notification settings page in Settings.

[Sleep Timer]
• Fixed a bug where the shutdown configured via the timer schedule did not work properly.

[WebAccess]
• Fixed a bug where multiple files could not be uploaded at a time.
• Fixed a bug where WebAccess did not work properly if the WebAccess settings were configured to use UPnP.

[NFS]
• Fixed a bug where the shared folder selection window was not displayed properly when adding an NFS rule if multiple shared folders with NFS enabled were created.

[Backup]
• The backup target folder for a backup job where a different TeraStation is the backup source has been changed to “backup target”/“date”/“backup source”.
• Fixed a bug where Settings could not be accessed.

[Workgroup/Domain]
• Fixed a bug where domain users could not access shared folders if the group that these domain users joined is configured for access restrictions.

[UPS Sync]
• Changed to have the E10 error display if the connection between the TeraStation and the UPS could not be established.

[FTP]
• Fixed a bug where the TeraStation could not be accessed via FTP after configuring access restrictions with a group that includes a specific number of members, then restarted.
• Fixed a bug where files that are 2 GB or larger could not be transferred.

[System]
• Fixed a bug where a working drive was erroneously identified as malfunctioning.
• Fixed a bug where the “Size on disk” of files on the TeraStation was displayed as larger than the actual size on Windows 8.1 or later.
• Fixed a bug where the CPU became overloaded when a test email was sent using the incorrect settings.
• Modified to patch a GLIBC programming vulnerability (CVE-2015-7547).
• Modified to patch lighttpd programming vulnerabilities (CVE-2013-4559 and CVE-2014-2323).
• Modified to patch Bash programming vulnerabilities (CVE-2014-7186 and CVE-2014-7187).
• Modified to patch OpenSSL programming vulnerabilities (CVE-2016-2176, CVE-2016-2109, CVE-2016-2108, CVE-2016-2107, CVE-2016-2106, and CVE-2016-2105).
• Modified to patch an ImageMagick filtering vulnerability (CVE-2016-3714).

[Services]
• Fixed a bug where a music file saved in a folder that contains a space in its folder name was not detected if the folder was used as a public folder for iTunes.

[Network]
• Fixed a bug where an IP address that begins with “169.254” could not be re-assigned correctly after the Ethernet cable was disconnected because removing the cable disabled the Ethernet interface.

[SMB]
• Modified to patch Samba programming vulnerabilities, including a Badlock vulnerability (CVE-2016-2112, CVE-2016-2115, CVE-2016-2118, CVE-2016-2110, CVE-2016-2111, CVE-2015-5370, CVE-2016-2113, CVE-2016-2114, CVE-2015-5252, CVE-2015-5296, CVE-2015-5299, and CVE-2015-7560).
• Fixed a bug where an access-restricted folder that only admin users can access could not be accessed after initializing settings.

Version 1.41 [2016-05-11]
Bug Fixes
[Quota]
• Fixed a bug where the limited drive space did not display properly on the Windows Properties page if a quota was configured.

Version 1.40 [2015-09-15]
Added and Modified Features
[Replication]
• Improved stability.

[System]
• Modified so that logs will be recorded to a system log when changing the fan speed.

Bug Fixes
[File Sharing]
• Fixed a bug where any user or group could access an access-restricted shared folder if the folder’s access restriction settings were set to no access. Since this firmware update, it is modified so that only admin users and groups can access the folder.

[Network]
• Fixed a bug where access restrictions with domain users reverted to disabled after restarting the unit.
• Fixed a bug where the access restriction settings were not configured for domain users from the user or group settings page in Settings.

[System]
• Fixed a bug where Settings could not be accessed.

Version 1.20 [2015-04-02]
Bug Fixes
[System]
• Modified to patch OpenSSL programming vulnerabilities (CVE-2014-3567 and CVE-2014-3568) that are also known as the POODLE (SSL3.0) vulnerability.
   The fixes above are only for the TS1200D TeraStation models.
• Modified to patch OpenSSL programing vulnerabilities (CVE-2014-3570, CVE-2014-3571, CVE-2014-3572, CVE-2014-8275, CVE-2015-0204, and CVE-2015-0206).
• Modified to patch Samba programming vulnerabilities (CVE-2014-0178 and CVE-2015-0240).

Version 1.11 [2015-01-20]
Added and Modified Features
• Now compatible with the TS1400R TeraStation models.

Bug Fixes
[System]
• Modified to patch OpenSSL programming vulnerabilities (CVE-2014-3567 and CVE-2014-3568) that are also known as the POODLE (SSL3.0) vulnerability.
• Fixed a bug where unnecessary logs were recorded.
• Fixed a bug where an error occurred in the internal database when connecting NTFS or exFAT-formatted USB drives to the TeraStation.
• Fixed a bug where the notification email contained some invalid descriptions.

Version 1.10 [2014-11-04]
Added and Modified Features
• Now compatible with the TS1400D TeraStation models.

Version 1.01 [2014-10-15]
Bug Fixes
[System]
• Modified to patch Bash programming vulnerabilities (CVE-2014-6271 and CVE-2014-7169).

Version 1.00 [2014-08-12]
• Initial release.