[Full-disclosure] Newest hacks
wangkaig at lenovo.com
wangkaig at lenovo.com
Wed Mar 21 05:26:03 GMT 2007
Hi guys,
I noticed a news recently.Researchers at Indiana University's Department
of Computer Science recently released a report outlining a way hackers
could potentially access and change the configuration routers on home
networks. They described how some JavaScript built into a Web page could
be used to log into the administrator account of a home router and change
its DNS (define) settings.The Indiana University report points out that
this attack doesn't exploit any browser vulnerability, and, more
importantly, it seems to work with pretty much any router,rrespective of
brand or model.Any idea how to program the javascript to modify the DNS
configuration?
Best Regards
Ken
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070321/5b974167/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 821 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070321/5b974167/attachment.gif
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 821 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070321/5b974167/attachment-0001.gif
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 815 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070321/5b974167/attachment-0002.gif
Full-Disclosure is hosted and sponsored by Secunia.