Skip to content
main
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 

CVE-2021-35296

Author: M. Afaq Abid

PoC of CVE-2021-35296 - PTCL Modem HG150-Ub

Authentication Bypass through response manipulation.

Steps to Reproduce:

  1. Go to login page of Modem (192.168.10.1)
  2. Type any random Username and Password and capture the request in any proxy listener. (BurpSuite)
  3. Forward the request with above random Username and Password with the option of Intercept Response.
  4. When the response returns, update Set-Cookie: Name=; with Set-Cookie: Name=0admin; and in body tag modify the parent.location='login.html' with parent.location='/'
  5. Forward the request and you are in the Admin Panel without any credentials.

PoC video for more details: https://youtu.be/kNdAIGcNvXU

About

PoC of CVE-2021-35296 - PTCL Modem HG150-Ub

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published