nicholas-howland/CVE-2026-6992-PoC

# CVE-2026-6992-PoC 蓝牙 pin RCE 注入漏洞 CVE-2026-6992 的漏洞概念验证，基于 https://github.com/utmost3/cve/issues/2 重新编写。漏洞的发现荣誉完全不归我所有。本内容仅出于教育和丰富作品集的目的。对于不支持通过蓝牙进行管理的设备，此 PoC 可能无效。JNAP 请求的处理较为复杂。 ## 使用方法与详情 此 exploit 应适用于具备蓝牙功能的 MR9600 路由器 ``` usage: CVE-2026-6992-PoC.py [-h] -ti TARGETIP [-tp TARGETPORT] -lp LISTENPORT -li LISTENIP [-u USERNAME] [-p PASSWORD] [-s] options: -h, --help show this help message and exit -ti, --targetIP TARGETIP Target IP address of the vulnerable router -tp, --targetPort TARGETPORT Listening port for the administrative interface, defualts to 80 -lp, --listenPort LISTENPORT Listening port on the testers machine -li, --listenIP LISTENIP IP address that is listening, usually 192.168.1.1 -u, --username USERNAME Administrator username to be used, defaults to admin -p, --password PASSWORD Password for the administrator account, defaults to admin -s, --https Use https instead of http, http is most common listening protocol on MR9600 ```

标签：Python, 无后门, 蓝牙, 路由器, 逆向工具