bpmcdevitt/exploit-db-mirror
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
exploit-db-mirror/exploits/hardware/remote/35103.txt
Offensive Security b4c96a5864 DB: 2021-09-03 
28807 changes to exploits/shellcodes
2021-09-03 20:19:21 +00:00

26 lines
No EOL
1 KiB
Text
Raw Permalink Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

-----------------------------------------------------------------------
Konke Smart Plug Authentication Bypass Vulnerability
-----------------------------------------------------------------------
Author : gamehacker&zixian
Mail : gh<gh@waloudong.org>&zixian<me@zixian.org>
Date : Oct, 17-2014
Vendor : http://www.kankunit.com/
Link : http://www.kankunit.com/
Version : K
CVE : CVE-2014-7279
Exploit & p0c
_____________
“Konke” is a smart Home Furnishing products (http://www.kankunit.com/) in China, the product has a security vulnerability, an attacker could exploit the vulnerability to obtain equipment management authority.
Konke Smart Plug open 23 portwe can telnet the 23 portwe can get root without password.
1、Scan Konke. you can use nmap scan the 23 port.
2、open cmd telnet Konke's 23 port.
3、now you are the root. it is a openwrt,you can use busybox do everything! you can use "reboot" command to reboot Konke.and so on……
_____________
Reference in a new issue View git blame Copy permalink