More Routers Vulnerable to RomPager Authentication Bypass

As discussed on prior blogs there are more routers that are vulnerable to the RomPager /rom-0 bypass:

D-Link DSL-2520U 1.08 Hardware Version: B1
D-Link DSL-2740R EU_1.13 Hardware Version: A1
AirLive WT-2000ARM 2.11.6.0(RE0.C29)3.7.6.1

While playing around it also seems that the D-Link routers frequently have a password of ‘263297’ making me think it is a default!

Tags: RomPager, Router

This entry was posted on January 27, 2014 at 12:00 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

3 Responses to “More Routers Vulnerable to RomPager Authentication Bypass”

kifcaliphiph Says:
June 16, 2014 at 5:05 pm | Reply
there is a fix I published there http://egyptianvulture.blogspot.com/2014/06/how-to-fix-zynos-vulnerability-prevent.html
kernel Says:
December 20, 2014 at 8:18 am | Reply
How to know which version of rompager i have ?
- dfreamon Says:
  December 22, 2014 at 10:44 pm | Reply
  That will depend on the router manufacturer and model and some may not have a way to easily show you!

The Darius Freamon Blog