This is a method to list the local files on the router via wftp (USBwebsever) :
Requires login and usb inserted into the aux usbports(fat/nfts)(*1)
Either goto:
Or
http://10.1.1.1/websrv_cfg.cmd?action=save&wftp_enable=1&wftp_remote=0&port=8000&path=*&partitionindex=1&disk_index=0&disk_name=sdb
(you may need to use Ui to turn this on)
(you may need to use Ui to turn this on)
To turn on the fileserver,
now point your browser here:
(notice the URLencode because the straight transversal is rejected by the websever not even making its way to the app
but with encoded slashes we beat the checks)
and click save
now we goto:
And we see our routers internal files.
we can wget out a copy of the systems memory with this enabled and scrape/view many of the files including the passwd file in the web browser:
fin.
No comments:
Post a Comment