Netgear FM114P Wireless Firewall File Disclosure Vulnerability



source: http://www.securityfocus.com/bid/6807/info


Netgear FM114P Wireless Firewalls allow directory traversal using escaped character sequences. It is possible for an unauthenticated user to retrieve the firewall's configuration file by escaping from the /upnp/service directory.

http://<ip-or-hostname>:<port>/upnp/service/%2e%2e%2fnetgear.cfg