Back to search

Open WAN-to-LAN proxy on AT&T routers

The Arris NVG589 and NVG599 routers configured with AT&T U-verse firmware 9.2.2h0d83 expose an un-authenticated proxy that allows connecting from WAN to LAN by MAC address.

Free Metasploit Download

Get your copy of the world's leading penetration testing tool

Download Now

Module Name

auxiliary/scanner/wproxy/att_open_proxy

Authors

Joseph HutchinsJon Hart <jon_hart[AT]rapid7.com>
Adam Cammack <adam_cammack[AT]rapid7.com>

References

CVE-2017-14117
URL: https://www.nomotion.net/blog/sharknatto/
URL: https://blog.rapid7.com/2017/09/07/measuring-sharknat-to-exposures/#vulnerability5port49152tcpexposure

Reliability

Normal

Development

Source Code
History

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


      msf > use auxiliary/scanner/wproxy/att_open_proxy
      msf auxiliary(att_open_proxy) > show actions
            ...actions...
      msf auxiliary(att_open_proxy) > set ACTION <action-name>
      msf auxiliary(att_open_proxy) > show options
            ...show and set options...
      msf auxiliary(att_open_proxy) > run

Vulnerability & Exploit Database

Open WAN-to-LAN proxy on AT&T routers

Free Metasploit Download

Module Name

Authors

References

Reliability

Development

Module Options

Legal

Resources & Help

Connect With Us

Stay in touch:

Quick Cookie Notification

Vulnerability & Exploit Database

Open WAN-to-LAN proxy on AT&T routers

Free Metasploit Download

Module Name

Authors

References

Reliability

Development

Module Options

Legal

Resources & Help

Connect With Us

Stay in touch: