Re: hacking the mitsubishi GB-50A

To: "Desai, Ashish" <Ashish.Desai@xxxxxxx>
Subject: Re: hacking the mitsubishi GB-50A
From: Chris Withers <chris@xxxxxxxxxxxxxxxx>
Date: Tue, 25 Mar 2008 13:48:18 +0000
Cc: bugtraq@xxxxxxxxxxxxxxxxx
In-reply-to: <2C3BDB94335C74438CE2861271F61D82012E59A3@xxxxxxxxxxxxxxxxxxxxxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
References: <47E465D5.8070709@xxxxxxxxxxxxxxxx> <2C3BDB94335C74438CE2861271F61D82012E59A3@xxxxxxxxxxxxxxxxxxxxxxxxxx>
User-agent: Thunderbird 2.0.0.12 (Windows/20080213)

Desai, Ashish wrote:

If you read your own post you would realize that Mitsubishikept the device ipaddress prefix as 192.168.1 so only you can attack
yourself.

Well, as James pointed out already, this reply is a little silly.

But, just to be clear, if Mitsubishi had explicitly documented that thisdevice should only be used on a private network and had no accesscontrols, I don't think I'd have a problem.

However, they show a username/password box (which I'm betting is fairlyeasilly circumvented if you know the right urls and can forge a cookieon the client...) so I think it's fair game to expect them to implementsome kind of real security.

cheers,

Chris

--
Simplistix - Content Management, Zope & Python Consulting
           - http://www.simplistix.co.uk

References:
- hacking the mitsubishi GB-50A
  - From: Chris Withers
- RE: hacking the mitsubishi GB-50A
  - From: Desai, Ashish

Prev by Date: Re: hacking the mitsubishi GB-50A
Next by Date: Re: [BUGTRAQ] RE: hacking the mitsubishi GB-50A
Previous by thread: Re: [BUGTRAQ] RE: hacking the mitsubishi GB-50A
Next by thread: Re: hacking the mitsubishi GB-50A
Index(es):
- Date
- Thread