<a href="http://g.adspeed.net/ad.php?do=clk&zid=14678&wd=728&ht=90&pair=as" target="_top"><img style="border:0px;" src="http://g.adspeed.net/ad.php?do=img&zid=14678&wd=728&ht=90&pair=as" alt="i" width="728" height="90"/></a>

Nmap Security Scanner

Docs
Security Lists

Full Disclosure

More
Security Tools

Packet crafters

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

edgeos network security services platform

Bugtraq: RE: NETGEAR DG834G SPECIAL FEATURES

RE: NETGEAR DG834G SPECIAL FEATURES

From: Andre Lorbach <alorbach_at_ro1.adiscon.com>
Date: Fri, 13 Aug 2004 12:22:46 +0200

> -----Original Message-----
> From: thanasonic_at_hack.gr [mailto:thanasonic_at_hack.gr]
>
> By opening http://192.168.0.1/setup.cgi?todo=debug you enable
> the router's debug mode.Then you just telnet at 192.168.0.1
> at port 23 and then you have a root shell.
>
> Also i found that if you just telnet to 192.168.0.1 2602 you
> will get a prompt from the service ZEBRA that is running on
> the router.By giving "zebra" as password *which is the
> default password* you got also a root shell.

Wow! That's exactly the router I have and these exploits work *fear*.
Fortunately, only on the local network, but they work!

With what Firmware version did you test? I still have 1.04 here.

Best regards,
Andre Lorbach
Received on Aug 13 2004

This message: [ Message body ]
Next message: T.H. Haymore: "Re: JS/Zerolin"
Previous message: Adam Zabrocki: "Advanced usage of system() function."
Maybe in reply to: thanasonic_at_hack.gr: "NETGEAR DG834G SPECIAL FEATURES"
Next in thread: thanasonic_at_hack.gr: "Re: NETGEAR DG834G SPECIAL FEATURES"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]