Home page logo

fulldisclosure logo Full Disclosure mailing list archives

ASUS RT-N13U Unsecured Telnet on LAN and WAN
From: Shelby Spencer <pwd_manager () hotmail com>
Date: Mon, 28 Oct 2013 16:33:52 -0700

The ASUS RT-N13U home router comes configured with an unsecured telnet for user "admin".
Telnetting in with this user will result in a root shell.  The telnet is not configurable from the web interface, nor 
does changing the password on the web interface's admin user make any difference.  I have alerted ASUS to the problem 
on 10/25/13.  I have been able to verify that this telnet interface is visible from both the LAN and WAN.

Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]