There is a wide-open hole in the Aztech/TNN ADSL modems supplied by Bezeq if used as a router (and even if not). To check if your modem is exploitable, try visiting:
http://10.0.0.138/cgi-bin/script?system+echo+Exploitable If you see the word "Exploitable" - then your modem is exploitable. Any rouge website can gain full control of your modem, even if you have changed the default administrator password (which is "Admin"). This script on the modem allows an attacker to issue arbitrary commands to the Linux system on the modem, including flashing the firmware. This can be used to snoop passwords or otherwise abuse the connection. Alon -- This message was sent by Alon Altman ([EMAIL PROTECTED]) ICQ:1366540 GPG public key at http://8ln.org/pubkey.txt Key fingerprint = A670 6C81 19D3 3773 3627 DE14 B44A 50A3 FE06 7F24 -------------------------------------------------------------------------- -=[ Random Fortune ]=- "Free markets select for winning solutions." -- Eric S. Raymond ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
