Computer Security
[EN] securityvulns.ru no-pyccku


AVM IGD CTRL Service directory traversal
Published:21.01.2007
Source:
SecurityVulns ID:7078
Type:remote
Threat Level:
5/10
Description:HTTP directory traversal with TCP/49001 (UPNP) port.
Affected:AVM : Fritz!DSL Software 02.02
CVE:CVE-2007-0357 (Directory traversal vulnerability in the AVM IGD CTRL Service in Fritz!DSL 02.02.29 allows remote attackers to read arbitrary files via ..%5C (URL-encoded dot dot backslash) sequences in a URI requested from the AR7 webserver.)
Original documentdocumentdpr_(at)_herr-der-mails.de, [Full-disclosure] Flaw in AVM UPNP service for windows (21.01.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod