Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: NETGEAR DG834G SPECIAL FEATURES

from [Uday Moorjani] Network Security [Permanent Link]
Subject: Re: NETGEAR DG834G SPECIAL FEATURES
Date: Fri, 13 Aug 2004 10:24:55 -0400 
Dear Sir,

But in order to have access to setup.cgi you need to bypass the .htaccess
protection.
I've tried it on my DG834G and it requires me to enter the .htaccess
password.

Uday K. MOORJANI

----- Original Message ----- 
From: <thanasonic@hack.gr>
To: <bugtraq@securityfocus.com>
Sent: Thursday, August 12, 2004 1:39 PM
Subject: NETGEAR DG834G SPECIAL FEATURES





By opening http://192.168.0.1/setup.cgi?todo=debug you enable the router's

debug mode.Then you just telnet at 192.168.0.1 at port 23 and then you have
a root shell.


Also i found that if you just telnet to 192.168.0.1 2602 you will get a

prompt from the service ZEBRA that is running on the router.By giving
"zebra" as password *which is the default password* you got also a root
shell.




---
avast! Antivirus: Inbound message clean.
Virus Database (VPS): 0433-2, 10/08/2004
Tested on: 13/08/2004 09:30:54
avast! is copyright (c) 2000-2003 ALWIL Software.
http://www.avast.com








---
avast! Antivirus: Outbound message clean.
Virus Database (VPS): 0433-2, 10/08/2004
Tested on: 13/08/2004 10:24:56
avast! is copyright (c) 2000-2003 ALWIL Software.
http://www.avast.com
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  recent gaim advisory, infamous41md
Next by Date:  [Full-Disclosure] SGI Advanced Linux Environment 2.4 security update #24, SGI Security Coordinator
Previous by Thread:  NETGEAR DG834G SPECIAL FEATURES, thanasonic
Next by Thread:  RE: NETGEAR DG834G SPECIAL FEATURES, Andre Lorbach
Indexes:  [Date] [Thread] [Top] [All Lists]