| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <20060811082639.5014.qmail@securityfocus.com> Date: 11 Aug 2006 08:26:39 -0000 From: gooorguss@...il.com To: bugtraq@...urityfocus.com Subject: Re: RE: linksys WRT54g authentication bypass I use WRT54g v4 (firmware v.4.20.8)and try to the following command. But I didn't exploit my router. When I captured the normal packet with ethereal, I only saw "POST /apply.cgi ....." When I captured the exploit packet with curl, I didn't receive a reply packet according to the exploit request but I received TCP FIN/ACK. Is not my WRT54g v4 vulnerable? ------------------------------------------------- C:\curl>curl -k -d "SecurityMode=0&layout=en" http://192.168.77.1/Se curity.tri curl: (52) Empty reply from server -------------------------------------------------
Powered by blists - more mailing lists