AVM Fritz!DSL IGD Control Service Directory Traversal Information Disclosure Vulnerability

The AVM Fritz!DSL IGD Control Service is prone to a remote information-disclosure vulnerability because the application fails to properly sanitize user-supplied input.

Exploiting this issue allows remote, unauthenticated attackers to retrieve the contents of arbitrary files from vulnerable computers with SYSTEM-level privileges. Information harvested may aid in further attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus