Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 31/12/2003 Updated: 29/07/2017

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

VMScore: 645

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P

Directory traversal vulnerability in the web configuration interface in Netgear FM114P 1.4 allows remote malicious users to read arbitrary files, such as the netgear.cfg configuration file, via a hex-encoded (%2e%2e%2f) ../ (dot dot slash) in the port parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
netgear fm114p 1.4_beta_release_17

source: wwwsecurityfocuscom/bid/6807/info Netgear FM114P Wireless Firewalls allow directory traversal using escaped character sequences It is possible for an unauthenticated user to retrieve the firewall's configuration file by escaping from the /upnp/service directory <ip-or-hostname>:<port>/upnp/service/%2e%2e%2fne ...

CWE-22 http://www.securityfocus.com/archive/1/311160 http://www.securityfocus.com/bid/6807 https://exchange.xforce.ibmcloud.com/vulnerabilities/11279 https://nvd.nist.gov https://www.exploit-db.com/exploits/22236/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-1427

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect