CVE-2003-1427

Currently unrated

Key Information:

Vendor: Netgear
Status: Fm114p
Vendor: CVE Published:; 31 December 2003

Summary

Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote attackers to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port parameter.

References

http://www.securityfocus.com/bid/6807

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/311160

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/11279

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
Oct 19, 2007
Vulnerability published
Dec 31, 2003