Bugtraq mailing list archives

Re: 3COM Wireless router (3CRADSL72) information disclosure

From: "mccauley () gmx net" <mccauley () gmx net>
Date: Fri, 15 Oct 2004 14:15:43 +0200

The router gives you a web page with user name, password, primary and
secondary DNS, default gateway, etc, if you access
http://[routerIP]/app_sta.stm without athentification of any kind.

Router details:
   Runtime Code Version       1.05 (Jan 27 2004 14:58:25)
   Boot Code Version  V1.3d
   Hardware Version   01A
   ADSL Modem Code Version    13.9.38

The password given is the password that you use to connect to the
internet, not to the router.


Information 
Runtime Code Version:   v1.00 (Dec 11 2003 22:19:05) 
Boot Code Version:   V2.25 

http://192.168.0.1/app_sta.stm  (Works, but no information leak...)

WAN Status: 1
WAN Type: 39
MAC Address: 00-00-00-00-00-00
IP Address: 0.0.0.0
Subnet Mask: 0.0.0.0
Default Gateway: 0.0.0.0
Host Name:

Current thread:

3COM Wireless router (3CRADSL72) information disclosure Karb0nOxyde - (Oct 14)
- Re: 3COM Wireless router (3CRADSL72) information disclosure mccauley () gmx net (Oct 18)