shonen Posted April 10, 2009 Share Posted April 10, 2009 I was doing some nmap scanning against a class mate’s network late last night and yes I had his consent. Anyways I noticed that the telnet and HTTP ports were wide open allowing me access to his speed stream modem/routers configuration interface. I ended up login in not with defaults but with the silly bastard’s password for his WEP key which I got off him some time ago when demoing backtrack (people are so predictable). I corrected this issue for him and we got chatting about it over msn. We both came to the same conclusion that google and its spiders do a marvelous job at trolling the interwebs caching web based content, so we thought can you google for other modem/routers that have the same external access to the web based configuration gui. As bob the build would say YES we can! Check it for yourself I know that a lot of the Siemens speedstream product are set with these ports open by default and are distributed this way by a lot of the large ADSL Australian based telco’s/isp’s , I am assuming that a lot of cable providers do pretty much the same thing with their Motorola cable modem but I am yet to check if they can be googled. I was also wondering if one was to gain access to the modem/router, what could you do from there. Well other than checking the DHCP list and port forwarding say netbios, disconnecting LAN users or some shit. Reason I ask is I wouldn’t mind rigging this up and testing it on either my own or class mate’s network for laughs thanks in advance. EDIT Sorry this proberbly belongs in the security section, my bad. Lack of sleep and a massive hangover increases my level of stupidity. Quote Link to comment Share on other sites More sharing options...
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.