Vulnonym.com

CVE-2006-5711 - Fahrenheit Mistakes

Description

ECI Telecom B-FOCuS Wireless 802.11b/g ADSL2+ Router allows remote attackers to read arbitrary files via a certain HTTP request as demonstrated by a request for a router configuration file related to the /html/defs/ URI.

Reference

http://lists.grok.org.uk/pipermail/full-disclosure/2006-October/050459.html http://www.securityfocus.com/bid/20834 http://securitytracker.com/id?1017145 http://secunia.com/advisories/22667 http://securityreason.com/securityalert/1817 http://www.vupen.com/english/advisories/2006/4331 https://exchange.xforce.ibmcloud.com/vulnerabilities/29931 eci-bfocus-url-information-disclosure(29931) http://www.securityfocus.com/archive/1/450187/100/0/threaded