AVM IGD CTRL Service directory traversal
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
AVM IGD CTRL Service directory traversal
Published:
21.01.2007
Source:
FULL-DISCLOSURE
SecurityVulns ID:
7078
Type:
remote
Level:
5
/10
Description:
HTTP directory traversal with TCP/49001 (UPNP) port.
Affected:
AVM
:
Fritz!DSL Software 02.02
CVE:
CVE-2007-0357
(Directory traversal vulnerability in the AVM IGD CTRL Service in Fritz!DSL 02.02.29 allows remote attackers to read arbitrary files via ..%5C (URL-encoded dot dot backslash) sequences in a URI requested from the AR7 webserver.)
Original document
dpr_(at)_herr-der-mails.de
,
[Full-disclosure] Flaw in AVM UPNP service for windows
(
21.01.2007
)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Enter your search terms
Web
securityvulns.com
Submit search form
