I did a writeup of a neat authentication bypass bug I found[1] in Netgear's venerable WNDR3700v4 wireless router. It gives you complete, unauthenticated access to the router's administrative interface. Authentication is disabled persistently, surviving reboots. Thought I'd share it: http://shadow-file.blogspot.com/2013/10/complete-persistent-compromise-of.html Thanks! Zach Twitter: @zcutlip [1] Jacob Holocomb if Independent Security Evaluators let me know he found a similar bug back in April this year in the WNDR4700. Here's a link to that report: http://securityevaluators.com/content/case-studies/routers/netgear_wndr4700.jsp -- :wq!
Attachment:
signature.asc
Description: Message signed with OpenPGP using GPGMail
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/