Discovered embedded backdoor to activate telnet/ftp/tftp/web extended
admin interface with Admin privileges, from internal network lan on
Alice ADSL CPE
Modem/Router, manufactered by Pirelli based on Broadcom platform.
Dettagli
Router Vendor: Alice Telecom Italia CPE Modem/Routers manufactered by Pirelli based on Broadcom platform.
Model Affected:AGA[Alice Gate2 plus Wi-Fi]
AGB[Alice Gate2plus]
AG2P-AG3[Alice Gate W2+]
AGPV-AGPF[Alice Gate VoIP 2 Plus Wi-Fi]
Firmware Version: All AGA/AGB/AG2P-AG3/AGPV-AGPF firmware version are affected.
Platforms: Customized Linux version 2.6.8.1 on BroadcomBCM96348 chipset.
Vulnerability: enable telnet/ftp/tftp and web-admin frominternal lan.
Exploitation: internal network lan, versus Router
Date: 13 Oct 2008
Authors: saxdax & drpepperONE
e-mail: saxdax2@gmail.com, drpepppperone@gmail.com
Risk: medium > low (opinabile ndr)
[Via Telecom Italia Alice Pirelli routers Backdoor from internal LAN/WAN]
0 Comment:
Posta un commento