• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

ELSA Lancom 1100 Office Insecure Web Administration Vulnerability

The ELSA Lancom 1100 Office router provides a wide variety of functionality for a small office enviroment, including DNS and DHCP service. It may be administered remotely through a number of mechanisms, including a web based interface.

Unfortunately, the web interface does not require authentication. Unauthorized users accessing the web pages may perform a variety of malicious actions. One of the exposed pages includes the RAS password in the html provided by the server, used to control remote access to the local network. It is also possible to upload new firmware to the router, potentially leading to far more severe attacks.

It is possible that other products in the Lancom line share this vulnerability.