EIP-2026-101385

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-101385. PoCs published by Saeed reza Zamanian.

AI-analyzed exploit summary This writeup details a backdoor account vulnerability in NetMan 204, where the 'eurek' account with password 'eurek' has sudo privileges, allowing full system access. The document also describes a method to bypass connection termination by executing '/bin/bash' post-login.

Description

NetMan 204 - Backdoor Account

Exploits (1)

exploitdb WRITEUP

by Saeed reza Zamanian · textremotehardware

https://www.exploit-db.com/exploits/40431

View Code ZIP pw:eip

This writeup details a backdoor account vulnerability in NetMan 204, where the 'eurek' account with password 'eurek' has sudo privileges, allowing full system access. The document also describes a method to bypass connection termination by executing '/bin/bash' post-login.

Classification

Writeup 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: NetMan 204

Auth required

Prerequisites: SSH access to the device · knowledge of the backdoor credentials

MITRE ATT&CK

T1078 - Valid Accounts T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 18, 2026 Full analysis →

NetMan 204 - Backdoor Account

Exploitation Summary

Description

Exploits (1)

Details