How to hack a LTE Router? Just text it! The ZTE MF258 router can be taken over by an unauthenticated user through an SMS payload. LTE routers are equipped with SIM cards and phone numbers, allowing for the sending and receiving of SMS messages. During my testing, I discovered a vulnerability in which unauthenticated Stored XSS could occur by sending certain text messages to the router. I reported this bug to ZTE and it has been registered as CVE-2023–41781. The following firmware versions are vulnerable: 1) ZTE_STD_V1.0.0B10 2) ZTE_STD_V1.0.0B08 Exploitation is a straightforward process… Prerequisites This vulnerability can be exploited without authentication. All that is required is a phone (router) number and for the user to take action by reading new SMS messages through the Web Interface (as shown in picture 1). Vulnerability The table view displaying received SMS messages (picture 1) is vulnerable. 1. Vulnerable view — list of received messages As no escaping has been added to the
Blog zawiera różne porady, sztuczki dotyczące IT(Linux, Programowanie, CyberSecurity). Blog powstał głównie po to by pomagać mi w przypadkach, gdy pamięc zawodzi, ale czemu inni nie mieliby skorzystać ?