Comments (15)
I tried to root the R4 version, but was unsuccesfull with 2.26.175 firmare version and v0.0.1
miwifi_r4_firmware_8ed47_2.26.175.bin
https://mirom.ezbox.idv.tw/en/miwifi/R4/
root@controller:/ins/OpenWRTInvasion-0.0.1# python3 remote_command_execution_vulnerability.py
Start netcat on port 4444
(The way to do this in MacOS is to open a terminal and run '/usr/bin/nc -l 4444')
When you are done, press any key to continue
Router IP address: 192.168.0.6
Your IP address: 192.168.0.1
stok: aa364a4225c326695e59ebcb6ba4901d
****************
netcat_port: 4444
attacker_ip_address: 192.168.0.1
router_ip_address: 192.168.0.6
stok:aa364a4225c326695e59ebcb6ba4901d
****************
start uploading config file ...
start exec command...
done!
from openwrtinvasion.
I dont know. If you try and it works, please report the router version and the software version so I can add it to the readme :)
@acecilia Worked on Mi Router 4 with firmware version v2.26.175
and OpenWRTInvasion v0.0.1.
from openwrtinvasion.
Thanks for reporting it :)
from openwrtinvasion.
@acecilia Maybe it's better to add a note in README.md for the correct version applicable in Mi router 4? I found the correct version here but it's not easy to find.
from openwrtinvasion.
In the readme it says:
Mi Router 4Q (aka R4C): user cadaverous claims that this method also works on firmware version 2.28.48 (message posted in Slack), but because the router is mips architecture (not mipsel), he needed to use version 0.0.1 of the script (the other versions use a busybox binary built for the mipsel architecture that is used to start a telnet sever).
Isnt that enough? What is exactly your router version? 4C
? 4Q
?
from openwrtinvasion.
@acecilia It's Mi Router 4
(No suffix): https://www.mi.com/miwifi4
Is it covered in this repository?
from openwrtinvasion.
I dont know. If you try and it works, please report the router version and the software version so I can add it to the readme :)
from openwrtinvasion.
@Firef0x thanks, added to the README 🙂
from openwrtinvasion.
Thanks! Succesfully use the lasted release V0.07 on Mi Router 4 (R4) with firmware version v2.26.175.
NOT: THE ROUTER NEEDS INTERNET ACCESS.
The router interface wan must connected with internet. otherwsie root will failed without any tips.
from openwrtinvasion.
I dont know. If you try and it works, please report the router version and the software version so I can add it to the readme :)
@acecilia Worked on Mi Router 4 with firmware version
v2.26.175
and OpenWRTInvasion v0.0.1.
@acecilia First thanks a lot ! This exploit works very well for miwifi r4a 100m and miwifi r4.
You might want to write that the router need to be setup as a router, not as an wifi access point. The explanation is that in wifi access point the web-ui does not give access to all the features like the speedtest etc..
from openwrtinvasion.
v0.0.10
works with v2.26.175
! The only problem that I faced is that OpenWRTInvasion is not working on WSL (Windows Subsystem for Linux) so I had to spin up Linux from a stick
from openwrtinvasion.
mi router 4: version 2.26.175.
I was used the script version v0.0.1 and v0.0.10 ,all of them dosen't work , the route can connect to the Inernet
from openwrtinvasion.
In the readme it says:
Mi Router 4Q (aka R4C): user cadaverous claims that this method also works on firmware version 2.28.48 (message posted in Slack), but because the router is mips architecture (not mipsel), he needed to use version 0.0.1 of the script (the other versions use a busybox binary built for the mipsel architecture that is used to start a telnet sever).
Isnt that enough? What is exactly your router version?
4C
?4Q
?
C:\Users\Jack Deng>nc -l 4444
local listen fuxored: INVAL
when i open another terminal ,run the nc -l 4444,this happened.sys:win 10 how can i solve this problem.
from openwrtinvasion.
the script is not support native windows system,you have to use linux or macos .another way is using docker to run images on windows。please read the README.md
from openwrtinvasion.
I try use docerk run code,but it's seem still not work
C:\Users\Jerry>docker run --network host -it openwrtinvasion
Router IP address [press enter for using the default 'miwifi.com']: 192.168.31.1
Enter router admin password: www.ebep.com
There two options to provide the files needed for invasion:
- Use a local TCP file server runing on random port to provide files in local directory
script_tools
. - Download needed files from remote github repository. (choose this option only if github is accessable inside router device.)
Which option do you prefer? (default: 1)
router_ip_address: 192.168.31.1
stok: e2c4720de879957fa8f85fc64c13c691
file provider: local file server
start uploading config file...
start exec command...
local file server is runing on 0.0.0.0:44357. root='script_tools'
Warning: the process has finished, but seems like ssh connection to the router is not working as expected.
- Maybe your firmware version is not supported, please have a look at https://github.com/acecilia/OpenWRTInvasion/blob/master/README.md#unsupported-routers-and-firmware-versions
- Anyway you can try it with: telnet 192.168.31.1
try use telnet 192.168.31.1 not work
from openwrtinvasion.
Related Issues (20)
- Cyberduck vs SCP HOT 1
- Backup HOT 1
- where can i find the indian rom for this router? HOT 8
- Is there a way to downgrade from 2.30.500 rom
- 4C
- The green hand give up. Connection Refused. HOT 1
- Couldn't unzip, the file is corrupt on v3.2.13 - mi router 4c HOT 2
- cannot flash Mi Router 4A (non gigabit) | MiWiFi Release 3.0.10 HOT 2
- Cannot flash OpenWRT on Mi Router 4A 100M (Chinese version) firmware 2.28.62 HOT 1
- Doesn't work on the Mi Router 4A(gigabit) (Chinese version) which is using latest firmware(2.30.28) HOT 1
- MI Router 4A (Gigabytes) Version 2.30.500 is not supported HOT 3
- Xiaomi Router 3 Pro (R3P)
- stock after flash HOT 1
- Feature: Mark {"code":1629,"msg":"Unpacking failed. The file may be damaged"} as expected error HOT 2
- Download instead of clone
- Sharing my experience on success invasion
- Warning: the process has finished, but seems like ssh connection to the router is not working as expected. HOT 6
- Successful invasion on 4c 3.0.45 HOT 2
- ROM file replacement
- Not working with firmware 2.30.500 ( Xiaomi Mi Router 4A Gigabit Edition - chinese version 2023.11 ) HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openwrtinvasion.