Asus AAM6330BI/AAM6000EV ADSL Router - Information Disclosure

EDB-ID:

22898

CVE:

N/A

Author:

cw

Type:

remote

Platform:

Hardware

Published:

2003-07-14

source: http://www.securityfocus.com/bid/8183/info

It has been reported that remote users may be able to obtain sensitive information from Asus ADSL routers. It is possible to request files from the built-in Web server that contain information such as usernames, passwords and other configuration information.

http://<host>/userdata

http://<host>/snmpinit