- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 33177
- Проверка EDB
-
- Пройдено
- Автор
- JEAN TROLLEUR
- Тип уязвимости
- REMOTE
- Платформа
- HARDWARE
- CVE
- null
- Дата публикации
- 2009-08-18
Код:
source: https://www.securityfocus.com/bid/36076/info
The NetGear WNR2000 is prone to multiple remote information-disclosure issues because it fails to restrict access to sensitive information.
A remote attacker exploit these issues to obtain sensitive information, possibly aiding in further attacks.
NOTE: Information obtained in attacks may be used in exploits targeting the vulnerability covered in BID 36094 (NetGear WNR2000 'upg_restore.cgi' Authentication Bypass Vulnerability).
The WNR2000 with firmware 1.2.0.8 is vulnerable; other firmware versions may also be affected.
The following example URIs are available:
http://www.example.com/router-info.htm
http://www.example.com/cgi-bin/router-info.htm
http://www.example.com/cgi-bin/NETGEAR_WNR2000.cfg- Источник
- www.exploit-db.com
