GHDB « Hackers For Charity

GHDB

GHDB

Google Search: intitle:"switch home page" "cisco systems" "Telnet - to"

jimmyneutron rates this entry 6 out of 10.
Submitted: 2004-10-09 09:04:52
Added by: jimmyneutron
Hits: 3808
Score: 6

Most cisco switches are shipped with a web administration interface. If a switch is reachable from the internet and google cashed it this search will show it.


Comments:

2004-10-09 14:18:55 (poz0r): This also works with any cisco 2500 routers. (I'm sure other series routers also work, but 2500 is the only one I am sure of).

Cisco 2500's, on the old IOS, used to have an old exploit where everything via web based command, would be checked through GET, so the information could be changed through the URL. You would be able to login as an admin... it looked something like this:

http://127.0.0.1/ would be the router's web based IP (of course not on loopback, but whatever the IP is)

You would punch in;

http://127.0.0.1/level/20/exec/-/show/config

That would run the 'show config' (short for show configuration) command, which contains user and password strings for exec mode in the router in plain text.

I know this comment is kind of out of the original post, but if you want to access a cisco device this way is much more practical.