Netgear password disclosure exploit - improvements

513b53dc · lucyoa · ce84d3be · 513b53dc
Commit 513b53dc authored Mar 11, 2017 by lucyoa
Hide whitespace changes
Inline Side-by-side

Showing with 26 additions and 27 deletions

multi_password_disclosure-2017-5521.py ...s/exploits/netgear/multi_password_disclosure-2017-5521.py +26 -27

No files found.
--- a/routersploit/modules/exploits/netgear/multi_password_disclosure-201701.py
+++ b/routersploit/modules/exploits/netgear/multi_password_disclosure-201701.py
@@ -12,13 +12,16 @@ from routersploit import (
 class Exploit(exploits.Exploit):
    """
    Exploit implementation for multiple NETGEAR routers password disclosure vulnerability.
-    If the target is vulnerable, it allows read credentials for administration user.
+    If the target is vulnerable, it allows to read credentials for administration user.
    """
    __info__ = {
-        'name': 'Netgear Multiple Vulnerabilities',
+        'name': 'Netgear Multi Password Disclosure',
-        'description': 'Remote and Local Password Disclosure.',
+        'description': 'Module exploits Password Disclosure vulnerability in multiple Netgear devices. '
+                       'If target is vulnerable administrator\'s password is retrieved. '
+                       'This exploit only works if \'password recovery\' in router settings is OFF. '
+                       'If the exploit has already been run, then it might not work anymore until device reboot.',
        'authors': [
-            'Simon Kenin of Trustwave SpiderLabs',  # vulnerability discovery
+            'Simon Kenin <Trustwave SpiderLabs>',  # vulnerability discovery
            '0BuRner',  # routersploit module
        ],
        'references': [
@@ -29,30 +32,26 @@ class Exploit(exploits.Exploit):
            'http://kb.netgear.com/30632/Web-GUI-Password-Recovery-and-Exposure-Security-Vulnerability'
        ],
        'devices': [
-            'D6220',
+            'Netgear D6220',
-            'D6400',
+            'Netgear D6400',
-            'R6200v2',
+            'Netgear R6200v2',
-            'R6250',
+            'Netgear R6250',
-            'R6300v2',
+            'Netgear R6300v2',
-            'R6400',
+            'Netgear R6400',
-            'R6700',
+            'Netgear R6700',
-            'R6900',
+            'Netgear R6900',
-            'R7000',
+            'Netgear R7000',
-            'R7100LG',
+            'Netgear R7100LG',
-            'R7300DST',
+            'Netgear R7300DST',
-            'R7900',
+            'Netgear R7900',
-            'R8000',
+            'Netgear R8000',
-            'R8300',
+            'Netgear R8300',
-            'R8500',
+            'Netgear R8500',
-            'WNDR3400v2',
+            'Netgear WNDR3400v2',
-            'WNDR3400v3',
+            'Netgear WNDR3400v3',
-            'WNR3500Lv2',
+            'Netgear WNR3500Lv2',
-            'WNDR4500v2',
+            'Netgear WNDR4500v2',
        ],
-        'limitations': [
-            "This exploit only works if 'password recovery' in router settings is OFF.",
-            "If the exploit has already been run, then it might not work anymore until device reboot."
-        ]
    }
    target = exploits.Option('', 'Target address e.g. http://192.168.1.1', validators=validators.url)