Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via (1) “//” (multiple leading slash), (2) …/ (dot dot) sequences, and encoded dot dot sequences in a URL request.
CPE | Name | Operator | Version |
---|---|---|---|
surfboard_sbv6120e | eq | sbv6x2x1.0.0.5scm2shpc |