BusyBox v1.00 (2009.03.27-03:15+0000) Built-in shell (msh)
Enter 'help' for a list of built-in commands.
# help
Built-in commands:
-------------------
. : break cd continue eval exec exit export help login newgrp
read readonly set shift times trap umask wait
# pwd
/
# ls
dev usr home sys bin var www
htdocs etc lib sbin mnt proc tmp
I connected from within the LAN, telneting to both the LAN an WAN port, but can anyone test this from outside the LAN, telneting to the WAN port? Providing the one of you still has a DIR-300 with original firmware on it, of course. If this works, it looks pretty bad to me.
BusyBox v1.00 (2009.03.27-03:15+0000) Built-in shell (msh)
Enter 'help' for a list of built-in commands.
# help
Built-in commands:
-------------------
. : break cd continue eval exec exit export help login newgrp
read readonly set shift times trap umask wait
# pwd
/
# ls
dev usr home sys bin var www
htdocs etc lib sbin mnt proc tmp
I connected from within the LAN, telneting to both the LAN an WAN port, but can anyone test this from outside the LAN, telneting to the WAN port? Providing the one of you still has a DIR-300 with original firmware on it, of course. If this works, it looks pretty bad to me.
passwd is not available, but password is stored in cleartext, so I think it can be modified. Don't know with which commands though, no text editor is installed.
Anywayz, it seems that the port is not open from the outside. Very well, then
passwd is not available, but password is stored in cleartext, so I think it can be modified. Don't know with which commands though, no text editor is installed.
Anywayz, it seems that the port is not open from the outside. Very well, then
Even if it was open then you could portforward this port to some non-existing ip address inside lan.
It should be possible to overwrite file via echo if the file system is writable echo "PASSWORD" > passwords_file _________________