Directory traversal

Multiple directory traversal vulnerabilities on the Huawei E585 device allow remote attackers to 1 read arbitrary files via a .. dot dot in the PATHINFO of an sdcard/ request or 2 modify arbitrary files via a .. dot dot in the reqpage parameter to en/sms.cgi...

CVE-2012-5969

Affected product/impact (as per provided documents): Huawei E585 pocket wifi 2 device suffers multiple directory traversal vulnerabilities (CVE-2012-5969) that allow remote attackers on the LAN side to read files (via .. in PATH_INFO of an sdcard/ request) or modify files (via .. in the req_page ...