Directory Traversal Vulnerability in Motorola Wimax Modem
CVE-2009-0392

Currently unrated

Key Information:

Vendor: Motorola
Status: Cpei300
Vendor: CVE Published:; 3 February 2009

Summary

The Motorola Wimax modem CPEi300 contains a directory traversal vulnerability in the sysconf.cgi file. This flaw allows remote authenticated users to exploit the page parameter via a series of '../' (dot dot) sequences, granting them the ability to read arbitrary files on the system. This weakness can lead to sensitive information disclosure, potentially compromising the device's integrity and the security of users' data.

References

http://www.securityfocus.com/bid/33519

vdb-entryx_refsource_BID

https://www.exploit-db.com/exploits/7915

exploitx_refsource_EXPLOIT-DB

http://www.securityfocus.com/archive/1/500545/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Feb 3, 2009
Vulnerability Reserved
Feb 2, 2009