filmov
tv
Getting Root With Cleaner Wrasse
Показать описание
An example of using Cleaner Wrasse to enable the backdoor on MikroTik RouterOS 6.41.4.
You can see I try to login as devel but it fails. I then user Clean Wrasse and Hacker Fantastic's set tracefile vulnerability to create the file /pckg/option, which then allows me to login as devel and get the root shell.
With my shell, I delete the /pckg/option file and log out. After that I'm no longer able to login again because the existence of /pckg/option enables the backdoor on this version.
You can see I try to login as devel but it fails. I then user Clean Wrasse and Hacker Fantastic's set tracefile vulnerability to create the file /pckg/option, which then allows me to login as devel and get the root shell.
With my shell, I delete the /pckg/option file and log out. After that I'm no longer able to login again because the existence of /pckg/option enables the backdoor on this version.
0:00:52
0:00:27
0:00:40
0:02:40
0:05:13
0:04:24
0:42:13
0:00:47
0:00:16
0:22:34
1:08:29
1:01:28
0:26:40
0:15:16
0:28:58
0:17:52
0:08:41
0:10:38
0:03:21
0:24:27
0:13:21
0:27:59
0:18:38
0:58:57