Netgear FM114P Wireless Firewall File Disclosure Vulnerability

info
discussion
exploit
solution
references

Netgear FM114P Wireless Firewall File Disclosure Vulnerability

Netgear FM114P Wireless Firewalls allow directory traversal using escaped character sequences. It is possible for an unauthenticated user to retrieve the firewall's configuration file by escaping from the /upnp/service directory.