[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] AirOS remote root 0day

To: full-disclosure@xxxxxxxxxxxxxxxxx
Subject: [Full-disclosure] AirOS remote root 0day
From: Christopher Granger <chrisgrangerx@xxxxxxxxx>
Date: Fri, 23 Dec 2011 16:46:28 +0000

Does anyone have additional information about this vulnerability?

It looks like it can be exploited by requesting:

http://[X.X.X.X]/admin.cgi/[any or no filename string].css

Although http://gregsowell.com/?p=3428 states: "The exploit appears to be a
flaw in the admin.cgi file(CORRECTION…IT IS ALL PAGES SO WE WILL BLOCK ALL
CGI)."

However, this last runs counter to what I've seen so far ...

Thanks,
-Chris

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Follow-Ups:
- Re: [Full-disclosure] AirOS remote root 0day
  - From: sd

Prev by Date: [Full-disclosure] [SECURITY] [DSA 2371-1] jasper security update
Next by Date: [Full-disclosure] Using hardware to attack software
Previous by thread: [Full-disclosure] AirOS remote root 0day
Next by thread: Re: [Full-disclosure] AirOS remote root 0day
Index(es):
- Date
- Thread