D-Link DSL-2750U - Authentication Bypass Vulnerability 2014-05-09

D-Link

Watchers:
This resource is being watched by 86 members.
  1. khaled mohdar
    ######################################################################
    http://1337day.com/exploit/21725
    http://www.exploit-db.com/exploits/30547/
    ######################################################################

    1)Introduction
    ==============
    D-Link DSL-2750U High-Speed Internet The DSL-2750U Wireless N ADSL2+ 4-Port
    Wi-Fi Router is a versatile,
    high-performance router for home and the small office.
    With integrated ADSL2/2+ supporting download speeds up to 24 Mbps,
    firewall protection, Quality of Service (QoS), 802.11n wireless LAN,
    and 4 Ethernet switch ports,
    this router provides all the functions that a home or small office needs to
    establish
    a secure and high-speed
    link to the Internet. Ultimate Wireless Connection with Maximum Security
    ============================================
    2)Vulnerability Description

    This router allows an attacker to bypass authentication and login to the
    setup page
    after that just make any settings and save or apply it and it's going to
    say "worng old password"
    Don't worry just hit ok . now you are in the Router settings you can
    Download the config file
    or whatever yuo want!

    and now you can easily make a new settings Includes a new login password


    #Exploit
    ========
    open this link

    192.168.1.1/html/config

    then Watch my Video

    https://www.youtube.com/watch?v=-Yvs_sc1tjQ
    Mr. Penguin and stigma like this.
  • About Us

    We are a community mixed with professionals and beginners with an interest in wireless security, auditing and pentesting. Feel free to check out and upload resources.


    You can also find us on: Twitter and Facebook

  • Donate to Us

    Did you find our forums useful? Feel free to donate Bitcoin to us using the form below. Those who donate the equivlent of $10 USD or more will be upgraded to VIP membership. Don't have Bitcoin? Use your credit card to GO VIP here. Don't want to fork out some coin? There are other ways to GO VIP. Bitcoin: 1LMTGSoTyJWXuy2mQkHfgMzD7ez74x1Z8K