Hübie
2011-02-22, 23:15:11
Hi Leute.
Was doofes ist passiert:
Im Router habe ich den Benutzernamen der Easybox (Standard: root, Passwort: 123456) auf "Administrator" geändert. Es gab keine maximale Zeichenbeschränkung. Leider erlaubt der Anmeldebildschirm nur 12 chars :mad: "Administrato" habe ich schon probiert...
Ich würde mich gerne per script einloggen, weiß aber net wie ich das anstellen soll. Ein Reset kommt net in Frage, weil die Zugangsdaten abhanden gekommen sind (Frauenhaushalt).
Der Code des Anmeldebildschirms:
<html>
<head>
<title></title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<script language="JavaScript">
var my_ddns=1;
var my_wlan_mac=0;
var my_snmp=0;
var my_dialup=0;
var my_printer=0;
var my_bridge=0;
var my_8021x=0;
var my_tiny=0;
var my_vpn=0;
var my_upnp=1;
var my_usb=0;
var operation_func=6;
var feature_func=1;
var product_code=1021120;
var my_file_share=0;
var vlan_func_enable=0;
var my_qos=2;
var my_voip_h323=0;
var my_voip_sip=0;
var ipsec_func=0;
var pptp_func=0;
var br_dhcpd_func=1;
var iptv_func=0;
var static_rt_func=0;
var PM="Arcor-Easy Box A 300 WLAN";
var BACKUP_LOG_NAME="Arcor_log.log";
var BACKUP_CONFIG_NAME="Arcor_config.bin";
var resetButton=0;
var hasUpgrade=1;
var ftpcRun=0;
var dhcpd_fixip_func=1;
var vendor_code=6;
var hyper_link="<a href='http://www.arcor.de' target='_blank'>";
var urlname="www.arcor.de";
var hyper_linkfwdl="<a href='http://firmware.arcor.de/a300' target='_blank'>";
var urlnamefwdl="firmware.arcor.de/a300";
var vendor_name="Arcor";
var company="Arcor AG & Co. KG";
var mouseover="'#A6A8BD'";
var mouseout="'#E7ECEF'";
var wizardbg="'#A6A8BD'";
var vendor_no=2;
var menu_link="<td height='0' align='left' bgColor='#A6A8BD' valign='middle'>";
var helplink="<p class=txt2></p>";
var firmware_ver='1.00.624';
if (parent.location.href != window.location.href)
parent.location.href = window.location.href;
function lang_DE()
{
document.tFF.language_flag.value=0;
document.tFF.menupage.value="/login.stm";
document.tFF.submit();
}
function lang_EN()
{
document.tFF.language_flag.value=1;
document.tFF.menupage.value="/login.stm";
document.tFF.submit();
}
function evaltF() {
document.tF.submit();
}
function kDown()
{
if (navigator.appName =='Netscape'&&(e.which ==3|| e.which ==13))
document.tF.submit();
else if (navigator.appName == 'Microsoft Internet Explorer' &&(event.keyCode == 13))
document.tF.submit();
}
document.onkeydown=kDown;
if (document.layers) window.captureEvents(Event.KEYDOWN);
window.onkeydown=kDown;
</script>
<style type=text/css>
body {margin-left:0px; margin-right:0px; margin-top:0px; background:#FFFFFF; color:#000000; font-family: Arial;}
td {font-family:Arial; font-size:12px; color: #191919; text-decoration:none}
/* main area */
.buttmsg {text-align: right; font-weight : normal; height: 20px; width: 650px}
.tdText {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left;}
.tdText_100 {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left; width: 100px}
.tdText_200 {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left; width: 200px}
.tdText {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: center;}
.tdTextr {BACKGROUND: gainsboro; color: #000A6E; font-family: Arial; font-size: 10pt; text-align: right;}
.tdTextl_60 {BACKGROUND: gainsboro; color: #000A6E; font-family: Arial; font-size: 10pt; text-align: left; width: 60px}
.bgstripe {background-color:#000A6E}
/* form elements */
.textbox {font-family: Arial; font-size:12px; background-color:white;}
.textbox_nb {font-family: Arial; font-size:12px; background-color:white;border: 0;}
.formsbutton {font-family: Arial; font-size:12px; background-color:white;}
.logintext {font-family: Arial; font-size:14px; color:#000A6E;font-weight: bold;}
.loginmsg {font-family: Arial; font-size:12px; color:red;}
.loginmsg2 {font-family: Arial; font-size:12px; color:red;font-weight: bold;}
.loginmsgb {font-family: Arial; font-size:12px; color:black;}
.buttontype {background-color:#FFFFFF;background-repeat: no-repeat;height: 17px;width: 60px;font-size: 11px;line-height: 12px;}
.button60l
{
display:block;
background-repeat: no-repeat;
height: 22px;
width: 60px;
font-size: 11px;
line-height: 15px;
font-family: Arial;text-decoration:none;font-weight: bold;
color: #13173A;
text-align: center;
padding-top: 3px;
margin-right: 15px;
letter-spacing:0px;
}
</style>
</head>
<body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0" onLoad="document.tF.user.focus();">
<table border="0" cellpadding="0" cellspacing="0" width="100%" height="83">
<tr>
<form ACTION="/cgi-bin/changef.exe" method="post" name="tFF">
<input type="hidden" name="language_flag" value="1">
<input type="hidden" name="menupage" value="">
<td bgcolor="#E7ECEF" width="25" height="55"><img border=0 src="/images/spacer.gif" width=25 height=55></td>
<td bgcolor="#E7ECEF" height="55" width=288 colspan="4">
<script language="JavaScript">
document.write(hyper_link);
if (operation_func != 0)
document.write('<img src="/images/logo_wl.gif" border="0" alt="'+PM+'">\n');
else
document.write('<img src="/images/logo_w.gif" border="0" alt="'+PM+'">\n');
</script>
</a>
</td>
<td bgcolor="#E7ECEF" height="55"> </td>
<td bgcolor="#E7ECEF" width="77" height="28" align="right"> </td>
<td bgcolor="#E7ECEF" height="28" align="right" nowrap>
<a href="javascript:lang_EN()"><img border="0" src="/images/language_en.gif" width="67" height="18"></a>
<!--<img border="0" src="/images/spacer.gif" width="5" height="18">-->
<img border="0" src="/images/language_de_gray.gif" width="72" height="18">
</td>
<td bgcolor="#E7ECEF" width="25" height="28"> </td>
</form>
</tr>
<tr>
<td bgcolor="#000A6E" width="313" height="28" colspan="5"> </td>
<td bgcolor="#000A6E" height="28"> </td>
<td bgcolor="#000A6E" width="77" height="28"> </td>
<td bgcolor="#000A6E" height="28" align="right">
<a href="/cgi-bin/logout.exe" target="_top"><img border="0" src="/images/logout.gif" width="151" height="28"></a></td>
<td width="25" height="28"><img border="0" src="/images/space25.gif" width="25" height="28"></td>
</tr>
</table>
<form action="/cgi-bin/login.exe" method="post" name="tF">
<table width="100%" border="0" cellspacing="0" cellpadding="0" height="80%">
<tr>
<td valign="middle" align="center" height="469">
<div class=word_c><br><br>
<table border="0" cellspacing="1" cellpadding="5">
<tr>
<td class=tdTextr>
<table border="0" cellspacing="1" cellpadding="5" width=360>
<tr>
<td class=logintext height="15" colspan="2" align="center">Anmeldebildschirm</td>
</tr>
<tr>
<td height="9" colspan="2" align="center"><hr width="80%" align="center"></td>
</tr>
<tr>
<td class=tdText_100><b>Benutzername:</b></td>
<td class=tdText_100><input type="text" class="textbox_nb" maxLength=12 size=37 name=user></td>
</tr>
<tr>
<td class=tdText_100><b>Kennwort:</b></td>
<td class=tdText_100><INPUT type="password" class="textbox_nb" maxLength=12 size=37 name=pws></td>
</tr>
<tr>
<td class=tdText_100> </td>
<td class=tdText_200 nowrap>
<table border=0 width=100%>
<tr>
<td><a href="javascript:void(0)" onClick="evaltF(); return false;" class="button60l"><img src="/images/login.gif" border="0"></a></td>
<td><a href=" " onclick="javascript:window.close(); return false;" class="button60l"><img src="/images/login_cancel.gif" border="0"></a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
<br><br>
<div class=word_c>
<p class=loginmsg>Bitte geben Sie das korrekte Passwort für den Administratorzugang ein. Danke.</p>
<p class=loginmsgb>Wir empfehlen, Internet Explorer 5.5 oder höher mit einer minimalen Auflösung von 1024x768 zu verwenden.<br>
Achtung: Für eine korrekte Darstellung im Internet Explorer darf die Funktion "Active Scripting" nicht deaktiviert sein.<br>
Copyright © 2007 Arcor AG & Co. KG. Alle Rechte vorbehalten.
<script language="JavaScript">
document.write('<br><span style="font-family:Arial;font-size : 12px;text-decoration : none;color : #000000;">'+firmware_ver+'</span>');
</script>
</p>
</div>
<SPAN id=js_enable>
<table width="80%" align="center" border="0" bgcolor="#FF0000">
<tr>
<td style="color:#FFFFFF"><p><b>Achtung:</b><br>Die Seite wird nicht komplett dargestellt, da "Active Scripting" im Internet Explorer deaktiviert ist. Bitte aktivieren Sie in den Sicherheitseinstellungen des Internet Explorers die Funktion "Active Scripting", um die Seite korrekt darzustellen.
</p></td>
</tr>
</table>
</span>
<script type="text/javascript">
<!--
document.getElementById("js_enable").innerHTML='';
//-->
</script>
</td>
</tr>
</table>
</form>
</body>
</html>
Wobei das wichtigste folgendes ist:
<tr>
<td class=tdText_100><b>Benutzername:</b></td>
<td class=tdText_100><input type="text" class="textbox_nb" maxLength=12 size=37 name=user></td>
</tr>
Das müsste eigentlich nur geändert werden.
Oder kann ich mich per Telnet darauf einloggen? Wenn ja wie? Bin echt zu blöde.
Aber ist auch echt kacke programmiert...:freak::rolleyes:
Danke schon mal.
bye Hübie
Was doofes ist passiert:
Im Router habe ich den Benutzernamen der Easybox (Standard: root, Passwort: 123456) auf "Administrator" geändert. Es gab keine maximale Zeichenbeschränkung. Leider erlaubt der Anmeldebildschirm nur 12 chars :mad: "Administrato" habe ich schon probiert...
Ich würde mich gerne per script einloggen, weiß aber net wie ich das anstellen soll. Ein Reset kommt net in Frage, weil die Zugangsdaten abhanden gekommen sind (Frauenhaushalt).
Der Code des Anmeldebildschirms:
<html>
<head>
<title></title>
<meta http-equiv="Content-Type" content="text/html; charset=windows-1252">
<script language="JavaScript">
var my_ddns=1;
var my_wlan_mac=0;
var my_snmp=0;
var my_dialup=0;
var my_printer=0;
var my_bridge=0;
var my_8021x=0;
var my_tiny=0;
var my_vpn=0;
var my_upnp=1;
var my_usb=0;
var operation_func=6;
var feature_func=1;
var product_code=1021120;
var my_file_share=0;
var vlan_func_enable=0;
var my_qos=2;
var my_voip_h323=0;
var my_voip_sip=0;
var ipsec_func=0;
var pptp_func=0;
var br_dhcpd_func=1;
var iptv_func=0;
var static_rt_func=0;
var PM="Arcor-Easy Box A 300 WLAN";
var BACKUP_LOG_NAME="Arcor_log.log";
var BACKUP_CONFIG_NAME="Arcor_config.bin";
var resetButton=0;
var hasUpgrade=1;
var ftpcRun=0;
var dhcpd_fixip_func=1;
var vendor_code=6;
var hyper_link="<a href='http://www.arcor.de' target='_blank'>";
var urlname="www.arcor.de";
var hyper_linkfwdl="<a href='http://firmware.arcor.de/a300' target='_blank'>";
var urlnamefwdl="firmware.arcor.de/a300";
var vendor_name="Arcor";
var company="Arcor AG & Co. KG";
var mouseover="'#A6A8BD'";
var mouseout="'#E7ECEF'";
var wizardbg="'#A6A8BD'";
var vendor_no=2;
var menu_link="<td height='0' align='left' bgColor='#A6A8BD' valign='middle'>";
var helplink="<p class=txt2></p>";
var firmware_ver='1.00.624';
if (parent.location.href != window.location.href)
parent.location.href = window.location.href;
function lang_DE()
{
document.tFF.language_flag.value=0;
document.tFF.menupage.value="/login.stm";
document.tFF.submit();
}
function lang_EN()
{
document.tFF.language_flag.value=1;
document.tFF.menupage.value="/login.stm";
document.tFF.submit();
}
function evaltF() {
document.tF.submit();
}
function kDown()
{
if (navigator.appName =='Netscape'&&(e.which ==3|| e.which ==13))
document.tF.submit();
else if (navigator.appName == 'Microsoft Internet Explorer' &&(event.keyCode == 13))
document.tF.submit();
}
document.onkeydown=kDown;
if (document.layers) window.captureEvents(Event.KEYDOWN);
window.onkeydown=kDown;
</script>
<style type=text/css>
body {margin-left:0px; margin-right:0px; margin-top:0px; background:#FFFFFF; color:#000000; font-family: Arial;}
td {font-family:Arial; font-size:12px; color: #191919; text-decoration:none}
/* main area */
.buttmsg {text-align: right; font-weight : normal; height: 20px; width: 650px}
.tdText {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left;}
.tdText_100 {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left; width: 100px}
.tdText_200 {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: left; width: 200px}
.tdText {BACKGROUND: gainsboro; color: #000000; font-family: Arial; font-size: 10pt; text-align: center;}
.tdTextr {BACKGROUND: gainsboro; color: #000A6E; font-family: Arial; font-size: 10pt; text-align: right;}
.tdTextl_60 {BACKGROUND: gainsboro; color: #000A6E; font-family: Arial; font-size: 10pt; text-align: left; width: 60px}
.bgstripe {background-color:#000A6E}
/* form elements */
.textbox {font-family: Arial; font-size:12px; background-color:white;}
.textbox_nb {font-family: Arial; font-size:12px; background-color:white;border: 0;}
.formsbutton {font-family: Arial; font-size:12px; background-color:white;}
.logintext {font-family: Arial; font-size:14px; color:#000A6E;font-weight: bold;}
.loginmsg {font-family: Arial; font-size:12px; color:red;}
.loginmsg2 {font-family: Arial; font-size:12px; color:red;font-weight: bold;}
.loginmsgb {font-family: Arial; font-size:12px; color:black;}
.buttontype {background-color:#FFFFFF;background-repeat: no-repeat;height: 17px;width: 60px;font-size: 11px;line-height: 12px;}
.button60l
{
display:block;
background-repeat: no-repeat;
height: 22px;
width: 60px;
font-size: 11px;
line-height: 15px;
font-family: Arial;text-decoration:none;font-weight: bold;
color: #13173A;
text-align: center;
padding-top: 3px;
margin-right: 15px;
letter-spacing:0px;
}
</style>
</head>
<body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0" onLoad="document.tF.user.focus();">
<table border="0" cellpadding="0" cellspacing="0" width="100%" height="83">
<tr>
<form ACTION="/cgi-bin/changef.exe" method="post" name="tFF">
<input type="hidden" name="language_flag" value="1">
<input type="hidden" name="menupage" value="">
<td bgcolor="#E7ECEF" width="25" height="55"><img border=0 src="/images/spacer.gif" width=25 height=55></td>
<td bgcolor="#E7ECEF" height="55" width=288 colspan="4">
<script language="JavaScript">
document.write(hyper_link);
if (operation_func != 0)
document.write('<img src="/images/logo_wl.gif" border="0" alt="'+PM+'">\n');
else
document.write('<img src="/images/logo_w.gif" border="0" alt="'+PM+'">\n');
</script>
</a>
</td>
<td bgcolor="#E7ECEF" height="55"> </td>
<td bgcolor="#E7ECEF" width="77" height="28" align="right"> </td>
<td bgcolor="#E7ECEF" height="28" align="right" nowrap>
<a href="javascript:lang_EN()"><img border="0" src="/images/language_en.gif" width="67" height="18"></a>
<!--<img border="0" src="/images/spacer.gif" width="5" height="18">-->
<img border="0" src="/images/language_de_gray.gif" width="72" height="18">
</td>
<td bgcolor="#E7ECEF" width="25" height="28"> </td>
</form>
</tr>
<tr>
<td bgcolor="#000A6E" width="313" height="28" colspan="5"> </td>
<td bgcolor="#000A6E" height="28"> </td>
<td bgcolor="#000A6E" width="77" height="28"> </td>
<td bgcolor="#000A6E" height="28" align="right">
<a href="/cgi-bin/logout.exe" target="_top"><img border="0" src="/images/logout.gif" width="151" height="28"></a></td>
<td width="25" height="28"><img border="0" src="/images/space25.gif" width="25" height="28"></td>
</tr>
</table>
<form action="/cgi-bin/login.exe" method="post" name="tF">
<table width="100%" border="0" cellspacing="0" cellpadding="0" height="80%">
<tr>
<td valign="middle" align="center" height="469">
<div class=word_c><br><br>
<table border="0" cellspacing="1" cellpadding="5">
<tr>
<td class=tdTextr>
<table border="0" cellspacing="1" cellpadding="5" width=360>
<tr>
<td class=logintext height="15" colspan="2" align="center">Anmeldebildschirm</td>
</tr>
<tr>
<td height="9" colspan="2" align="center"><hr width="80%" align="center"></td>
</tr>
<tr>
<td class=tdText_100><b>Benutzername:</b></td>
<td class=tdText_100><input type="text" class="textbox_nb" maxLength=12 size=37 name=user></td>
</tr>
<tr>
<td class=tdText_100><b>Kennwort:</b></td>
<td class=tdText_100><INPUT type="password" class="textbox_nb" maxLength=12 size=37 name=pws></td>
</tr>
<tr>
<td class=tdText_100> </td>
<td class=tdText_200 nowrap>
<table border=0 width=100%>
<tr>
<td><a href="javascript:void(0)" onClick="evaltF(); return false;" class="button60l"><img src="/images/login.gif" border="0"></a></td>
<td><a href=" " onclick="javascript:window.close(); return false;" class="button60l"><img src="/images/login_cancel.gif" border="0"></a></td>
</tr>
</table>
</td>
</tr>
</table>
</td>
</tr>
</table>
<br><br>
<div class=word_c>
<p class=loginmsg>Bitte geben Sie das korrekte Passwort für den Administratorzugang ein. Danke.</p>
<p class=loginmsgb>Wir empfehlen, Internet Explorer 5.5 oder höher mit einer minimalen Auflösung von 1024x768 zu verwenden.<br>
Achtung: Für eine korrekte Darstellung im Internet Explorer darf die Funktion "Active Scripting" nicht deaktiviert sein.<br>
Copyright © 2007 Arcor AG & Co. KG. Alle Rechte vorbehalten.
<script language="JavaScript">
document.write('<br><span style="font-family:Arial;font-size : 12px;text-decoration : none;color : #000000;">'+firmware_ver+'</span>');
</script>
</p>
</div>
<SPAN id=js_enable>
<table width="80%" align="center" border="0" bgcolor="#FF0000">
<tr>
<td style="color:#FFFFFF"><p><b>Achtung:</b><br>Die Seite wird nicht komplett dargestellt, da "Active Scripting" im Internet Explorer deaktiviert ist. Bitte aktivieren Sie in den Sicherheitseinstellungen des Internet Explorers die Funktion "Active Scripting", um die Seite korrekt darzustellen.
</p></td>
</tr>
</table>
</span>
<script type="text/javascript">
<!--
document.getElementById("js_enable").innerHTML='';
//-->
</script>
</td>
</tr>
</table>
</form>
</body>
</html>
Wobei das wichtigste folgendes ist:
<tr>
<td class=tdText_100><b>Benutzername:</b></td>
<td class=tdText_100><input type="text" class="textbox_nb" maxLength=12 size=37 name=user></td>
</tr>
Das müsste eigentlich nur geändert werden.
Oder kann ich mich per Telnet darauf einloggen? Wenn ja wie? Bin echt zu blöde.
Aber ist auch echt kacke programmiert...:freak::rolleyes:
Danke schon mal.
bye Hübie