Menu
What's new
By:
Filters Better Search

Recent content by brumac

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

  1. B

    Asus rt-ac68u port 443 VULNERABLE: http-method-tamper

    Ok! Thank you!
  2. B

    Asus rt-ac68u port 443 VULNERABLE: http-method-tamper

    I have tested my asus rt-ac68u vulnerabilities with zANTI = android version of nmap to run vulnerability scans. The test reported vulnerabilities to me: 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This...
  3. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    I tested the vulnerabilities of my RT-68U (Firmware Asuswrt-Merlin 384.8.2) with zANTI: 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) So to install Skynet I have to format a USB pen drive in ext4 and...
  4. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    OK! I was referring to (Firmware bug or depends on the OpenVPN (NordVPN) configuration on TCP port 443?!) : 443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This web server contains password...
  5. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    Now I checked: Remote Access Config: Enable Web Access from WAN: No Firmware bug or depends on the OpenVPN (NordVPN) configuration on TCP port 443?!
  6. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    How do I configure the RT68U router (Asuswrt-Merlin firmware) to allow HTTP access only through the local network? I do not know where to change this setting. Thank you!
  7. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    443 tcp open https syn-ack http-method-tamper VULNERABLE: Authentication bypass by HTTP verb tampering State: VULNERABLE (Exploitable) This web server contains password protected resources vulnerable to authentication bypass vulnerabilities via HTTP verb tampering. This is often found in web...
  8. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    I'm curious about it. I also trust the Merlin Firmware and I do not even have to hide. Thinking about vulnerabilities, they are perhaps false positives because I have not said one important thing: I have configured on my rt-68u VPN client (NordVPN) and also OpenVPN server (to communicate...
  9. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    I looked for CVE on Google. I did not understand anything. I apologize for my ignorance. In AIProtection page Enabled AiProtection is OFF! Router Security Assessment gives me 3 Risk: Malicious Website Blocking enabled No Vulnerability Protection enabled - No Infected Device Prevention and...
  10. B

    RT-68U (Firmw 384.8.2) Vulnerabilities revealed by zANTI

    Good morning, I am not an expert and need help. Yesterday I tested the vulnerabilities of my RT-68U (Firmware Asuswrt-Merlin 384.8.2) with zANTI. Result: Vulnerabilities (3): smb-vuln-cve2009-3103, http-slowloris-check, http-method-tamper Do I have to change the configuration? What should I do...
See more
Top