[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Message-ID: <BLU180-W162B7AA897F77B1239FF6A80080@phx.gbl>
Date: Mon, 28 Oct 2013 16:33:52 -0700
From: Shelby Spencer <pwd_manager@...mail.com>
To: "full-disclosure@...ts.grok.org.uk" <full-disclosure@...ts.grok.org.uk>
Subject: ASUS RT-N13U Unsecured Telnet on LAN and WAN
The ASUS RT-N13U home router comes configured with an unsecured telnet for user "admin".
Telnetting in with this user will result in a root shell. The telnet is not configurable from the web interface, nor does changing the password on the web interface's admin user make any difference. I have alerted ASUS to the problem on 10/25/13. I have been able to verify that this telnet interface is visible from both the LAN and WAN.
Sincerely,
Shellster
Content of type "text/html" skipped
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Powered by blists - more mailing lists