• If you hook a non-provisioned modem into the. Godfather” of cable modem hacking.

That is fairly odd. I can't think of a reasonable reason for a hidden account that is unable to log into the UI.

So what exactly can you do with this account? Well, the web application is basically a html/js wrapper to some CGI that gets/sets SNMP values on the modem. It is worth noting that on previous FW revisions the CGI calls did NOT require any authentication and could be called without providing a valid 'credential' cookie. That bug was killed a few years ago. Now we can resurrect the ability to set/get SNMP values by setting our 'technician' account. This functionality can be wrapped up in the following curl command: curl -isk -X 'GET' -b 'credential=eyJjcmVkZW50aWFsIjoiZEdWamFHNXBZMmxoYmpvPSJ9' 'Of course if you change the password you wouldn't be very sneaky, a better approach would be re-configuring the modems DNS settings perhaps? Dell 2408wfp Usb Card Reader Driver. It's also worth noting that the SNMP set/get is CSRF'able if you were to catch a user who had recently logged into their modem.

The real pain here is that Arris keeps their FW locked up tightly and only allows Cable operators to download revisions/fixes/updates, so you are at the mercy of your Cable operator, even if Arris decides that its worth the time and effort to patch this bug backdoor - you as the end user CANNOT update your device because the interface doesn't provide that functionality to you! Next level engineering. Hahahahaha, amazing. Reminds me once I had a Qwest modem that came with a source code disc in the box. I'm using a TG862G, HW #5, TS070686H_081514_MODEL_862_GW Looks like an older FW version, but mine doesn't use cookies at all. It seems to be using an internal user memory, I'll play around with this exploit sometime anyways.

I actually had to dig through the HTML to get the FW version, which they so kindly commented out of the software page. They managed to use JQuery and still make the UI look like garbage. Arris has so much background making modems, you'd think I could have some better features such as data statistics and a device list that's interactive and actually works (70% of the computers it's seen on my network show up as UNKNOWN). I'm thankful that it's somewhat useful(solid port forwarding, static IPs, white/black listing), but damn.