Network Security: Detailed info on RE: NETGEAR DG834G SPECIAL FEATURES

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Bugtraq

[Top] [All Lists]

RE: NETGEAR DG834G SPECIAL FEATURES

from [Andre Lorbach] Network Security

[Permanent Link]

Subject:	RE: NETGEAR DG834G SPECIAL FEATURES
Date:	Fri, 13 Aug 2004 12:22:46 +0200

-----Original Message-----
From: thanasonic@hack.gr [mailto:thanasonic@hack.gr] 

By opening http://192.168.0.1/setup.cgi?todo=debug you enable 
the router's debug mode.Then you just telnet at 192.168.0.1 
at port 23 and then you have a root shell.

Also i found that if you just telnet to 192.168.0.1 2602 you 
will get a prompt from the service ZEBRA that is running on 
the router.By giving "zebra" as password *which is the 
default password* you got also a root shell.


Wow! That's exactly the router I have and these exploits work *fear*. 
Fortunately, only on the local network, but they work!

With what Firmware version did you test? I still have 1.04 here.

Best regards,
Andre Lorbach

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
NETGEAR DG834G SPECIAL FEATURES, thanasonic Re: NETGEAR DG834G SPECIAL FEATURES, Uday Moorjani RE: NETGEAR DG834G SPECIAL FEATURES, Andre Lorbach <= Re: NETGEAR DG834G SPECIAL FEATURES, thanasonic Re: NETGEAR DG834G SPECIAL FEATURES, Dave Paris Re: NETGEAR DG834G SPECIAL FEATURES, Paul James Re: NETGEAR DG834G SPECIAL FEATURES, Rodrigo Barbosa RE: NETGEAR DG834G SPECIAL FEATURES, prj Re: NETGEAR DG834G SPECIAL FEATURES, Luca Berra

Previous by Date:	MDKSA-2004:082 - Updated mozilla packages fix multiple vulnerabilities, Mandrake Linux Security Team
Next by Date:	Corsaire Security Advisory - Clearswift MAILsweeper multiple encoding/compression issues, advisories
Previous by Thread:	Re: NETGEAR DG834G SPECIAL FEATURES, Uday Moorjani
Next by Thread:	Re: NETGEAR DG834G SPECIAL FEATURES, thanasonic
Indexes:	[Date] [Thread] [Top] [All Lists]