Comments (3)
juampe
commented on May 31, 2024
As #21 with 0.0.1 but no success ¿Maybe the 192.168.31.1 address is mandatory?
root@controller:/ins/OpenWRTInvasion-0.0.1# python3 remote_command_execution_vulnerability.py
Start netcat on port 4444
(The way to do this in MacOS is to open a terminal and run '/usr/bin/nc -l 4444')
When you are done, press any key to continue
Router IP address: 192.168.0.6
Your IP address: 192.168.0.1
stok: aa364a422
****************
netcat_port: 4444
attacker_ip_address: 192.168.0.1
router_ip_address: 192.168.0.6
stok:aa364a4225
****************
start uploading config file ...
start exec command...
done!
from openwrtinvasion.
acecilia
commented on May 31, 2024
No idea, I dont have a R4 router to test, so I cant tell if the exploit works or not 😞
Did you run /usr/bin/nc -l 4444 before running python3 remote_command_execution_vulnerability.py?
I dont know about your network configuration, but I would try to keep it as simple as possible.
You can also ask in the OpenWrt forum, there is an extremely long thread about this: https://forum.openwrt.org/t/xiaomi-mi-router-4a-gigabit-edition-r4ag-r4a-gigabit-fully-supported-and-flashable-with-openwrtinvasion/36685
from openwrtinvasion.
acecilia
commented on May 31, 2024
I can see in the information you posted that the value for stok is aa364a4225. That is not a valid stok. Take a look at the README, where it is explained how to get the stok
from openwrtinvasion.
Related Issues (20)
- Hoddys Bricked video has malware-infested tools HOT 3
- Cyberduck vs SCP HOT 1
- Backup HOT 1
- where can i find the indian rom for this router? HOT 8
- Is there a way to downgrade from 2.30.500 rom
- 4C
- The green hand give up. Connection Refused. HOT 1
- Couldn't unzip, the file is corrupt on v3.2.13 - mi router 4c HOT 2
- cannot flash Mi Router 4A (non gigabit) | MiWiFi Release 3.0.10 HOT 2
- Cannot flash OpenWRT on Mi Router 4A 100M (Chinese version) firmware 2.28.62 HOT 1
- Doesn't work on the Mi Router 4A(gigabit) (Chinese version) which is using latest firmware(2.30.28) HOT 1
- MI Router 4A (Gigabytes) Version 2.30.500 is not supported HOT 3
- Xiaomi Router 3 Pro (R3P)
- stock after flash HOT 1
- Feature: Mark {"code":1629,"msg":"Unpacking failed. The file may be damaged"} as expected error HOT 2
- Download instead of clone
- Sharing my experience on success invasion
- Warning: the process has finished, but seems like ssh connection to the router is not working as expected. HOT 6
- Successful invasion on 4c 3.0.45 HOT 2
- ROM file replacement
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openwrtinvasion.