[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] Newest hacks

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] Newest hacks
From: wangkaig@xxxxxxxxxx
Date: Wed, 21 Mar 2007 13:26:03 +0800

Hi guys,

I noticed a news recently.Researchers at Indiana University's Department 
of Computer Science recently released a report outlining a way hackers 
could potentially access and change the configuration routers on home 
networks. They described how some JavaScript built into a Web page could 
be used to log into the administrator account of a home router and change 
its DNS (define) settings.The Indiana University report points out that 
this attack doesn't exploit any browser vulnerability, and, more 
importantly, it seems to work with pretty much any router,rrespective of 
brand or model.Any idea how to program the javascript to modify the DNS 
configuration? 

Best Regards 



Ken

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] Newest hacks
  - From: Jim Popovitch
- Re: [Full-disclosure] Newest hacks
  - From: Saeed Abu Nimeh

Prev by Date: [Full-disclosure] [USN-438-1] Inkscape vulnerability
Next by Date: Re: [Full-disclosure] Newest hacks
Previous by thread: [Full-disclosure] [USN-438-1] Inkscape vulnerability
Next by thread: Re: [Full-disclosure] Newest hacks
Index(es):
- Date
- Thread