Home > CVE > CVE-2018-15181:JioFi 4G Hotspot M2S 150 Mbps Router has Buffer Overflow

CVE-2018-15181:JioFi 4G Hotspot M2S 150 Mbps Router has Buffer Overflow

CVE-2018-15181-Vikas Chaudhary

< MySelf Vikas Chaudhary.I found that specified JioFi 4G Hotspot M2S 150 Mbps Router has Buffer Overflow Vulnerability via SSID name and Security Key . To exploit this vulnerability, the following steps were taken.


Step 1- First Open Burp Suite

Step 2- Make Intercept on

CVE-2018-15181-Vikas Chaudhary

Step 3 -Go to your Wifi Router Gateway and log in [i.e http://192.168.225.1 ]

CVE-2018-15181-Vikas Chaudhary

Step 4- Go To => Setting=> WiFi

Step 5- In SSID type “Testing” and in Security Key type “12345678” .

CVE-2018-15181-Vikas Chaudhary

Step 6-Click on Apply

Step 7- Burp will Capture the Intercepts.

CVE-2018-15181:Vikas Chaudhary

Step 8- Copy this code “*onmouseover=alert(1)// and paste it after the SSID name and Security Key (Rename Vikas chaudhary and 12345 to Code ) and Forward it.

CVE-2018-15181:Vikas Chaudhary
CVE-2018-15181:Vikas Chaudhary


[ Note=> Remove * from script]

Step 9- You will see that your Net connection will lost and Router will shutdown and Restart..

Step 10-The Router will RESTART and your SSID name will change to this “onmouseover=alert(1)//

Step 11- Now again go to Wifi router gateway and loged in

Step 12-You will see that the SSID name and Security Key will be Blank

Step 13-Again try to Change the SSID name – YOU CAN’T , If you force it to change , You have to OPEN Your Wireless
Security and that is unsecure . (Open wifi=> Without Password)
My Previous CVE (Visit Once)…

ALL CVE
CVE-2018-15191
CVE-2018-15190
CVE-2018-14541
CVE-2018-14082
CVE-2018-13256

CONTACT US



Summary
Article Name=>
CVE-2018-15181
Description=>
JioFi 4G Hotspot M2S 150 Mbps Router has Buffer Overflow
Author=>
Publisher Name=>
www.gkaim.com
Admin
Welcome Sir, .. Myself Vikas Chaudhary , i was interested in general knowledge since childhood , so i thought why not to share my knowledge with you, that's why i created this educational blog. Here you find world wide general knowledge of all Latest technology , Science & History Que , and Mysterious fact of the world. Here you also find knowledge about cyber security. Thanks for visit.. keep supporting....keep Loving
https://www.gkaim.com

10 thoughts on “CVE-2018-15181:JioFi 4G Hotspot M2S 150 Mbps Router has Buffer Overflow

  1. One needs to be logged in as an administrator before you can use this to crash your own router. Why would an administrator go to all this trouble to crash his router.
    What a useless finding!

Leave a Reply

%d bloggers like this: