ttyd严重安全漏洞 #35
Comments
|
感谢提醒,我已经注释掉了,@Hyy2001X 还是安全重要吧 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
{{ message }}
|
感谢提醒,我已经注释掉了,@Hyy2001X 还是安全重要吧 |
sed -i "s?/bin/login?/usr/libexec/login.sh?g" ${FEEDS_PKG}/ttyd/files/ttyd.config这一句代码等效移除了ttyd的登录验证,只要访问路由器的ip:7681 就能直接获取路由的root权限。
更为严重的影响是,默认的防火墙并未针对ipv6环境的公网访问做出限制。意味着只要拿到了openwrt的公网ipv6或者是接入了其局域网就能获取openwrt的root权限
The text was updated successfully, but these errors were encountered: