Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3561

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-3561
Last Modified 07 Mar 2011 09:38:56
Published 12 Jul 2006 09:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3561

Summary

BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier, allow remote attackers to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh, PPP crendentials via (2) btvoyager_getpppcreds.sh, and decode configuration credentials via (3) btvoyager_decoder.c.

Vulnerable Systems


References

XF - btvoyager-config-information-disclosure(27652)

VUPEN - ADV-2006-2734

BID - 19057

BUGTRAQ - 20080301 The Router Hacking Challenge is Over!

BUGTRAQ - 20060716 Unauthenticated access to BT Voyager config file and PPP credentials embedded in HTML form

MISC - http://www.gnucitizen.org/projects/router-hacking-challenge/

MISC - http://www.gnucitizen.org/blog/holes-in-embedded-devices-authentication-bypass-pt-3/

SECUNIA - 20982

FULLDISC - 20060708 Unauthenticated access to BT Voyager config file

MISC - http://ikwt.dyndns.org/projects/btvoyager-getconfig.txt


Last Updated: 27 May 2016 10:43:02