ZTE ZXDSL 831CII – Improper Access Restrictions

Exploit Database
34 阅读

作者： Ibad Shah

日期： 2017-11-27
类别：
- webapps
平台：
- hardware
来源：https://www.exploit-db.com/exploits/43188/

# Exploit Title: ZTE ZXDSL 831 Unauthorized Configuration Access
# Date: 27/11/2017
# Exploit Author: Ibad Shah
# Vendor Homepage: zte.com.cn
# Software Link: -
# Version: - ZXDSL - 831CII
# Tested on: Windows 10
# CVE :- 2017-16953

======================================= 
The Router usually servers html files & are protected with HTTP Basic
Authentication. However, the CGI files does not protect this file from
getting exposed to public. A Simple GET request would be needed to
made to router that would give a remote attacker an opportunity to
modify router PPPoE configurations, setup malicious configurations
which later could lead to disrupt network & its activities.


Proof Of Concept
================
http://192.168.1.1/connoppp.cgi

last Exploits
ZTE ZXDSL 831CII – Improper Access Restrictions的更多信息

BuildaGate5library v5 – Reflected Cross-Site Scripting (XSS)：
LinPHA 1.3.2 – ‘rotate.php’ Remote Command Execution：
Eshop Manager – Multiple SQL Injections：
Plone CMS 5.2.3 – ‘Title’ Stored XSS：
Nessus 8.2.1 – Cross-Site Scripting：
CMSUno 1.6 – Cross-Site Request Forgery (Change Admin Password)：
PHPAuthent 0.2.1 – ‘useradd.php’ Multiple HTML Injection Vulnerabilities：
Advanced Real Estate Script 4.0.6 – SQL Injection：