BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
ZTE ZXDSL 831CII Direct Object Reference Nov 06 2014 07:28PM
habte yibelo gmail com
The modem usually serves html files & protects them with HTTP Basic authentication. however, the cgi files, does not get this protection. so simply requesting any cgi file (without no authentication) would give a remote attacker full access to the modem and then can easily be used to root the modem ...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus