CVE-2006-3561
BT Voyager 2091 (Wireless ADSL) - Multiple Vulnerabilities
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
2Exploited in Wild
-Decision
Descriptions
BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier, allow remote attackers to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh, PPP credentials via (2) btvoyager_getpppcreds.sh, and decode configuration credentials via (3) btvoyager_decoder.c.
El firmware BT Voyager 2091 Wireless 2.21.05.08m_A2pB018c1.d16d y anteriores, y 3.01m y anteriores, permite a atacantes remotos evitar el proceso de autenticación y obtener información sensible, por ejemplo información de configuración, mediante (1) /btvoyager_getconfig.sh, credenciales PPP mediante (2) btvoyager_getpppcreds.sh, y decodificar credenciales de configuración mediante btvoyager_decoder.c.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2006-07-12 CVE Reserved
- 2006-07-13 CVE Published
- 2006-07-18 First Exploit
- 2024-08-07 CVE Updated
- 2024-11-01 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://lists.grok.org.uk/pipermail/full-disclosure/2006-July/047733.html | Mailing List | |
| http://www.gnucitizen.org/blog/holes-in-embedded-devices-authentication-bypass-pt-3 | X_refsource_misc | |
| http://www.gnucitizen.org/projects/router-hacking-challenge | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/440405/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/archive/1/489009/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/19057 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2006/2734 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/27652 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/2034 | 2006-07-18 | |
| http://ikwt.dyndns.org/projects/btvoyager-getconfig.txt | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/20982 | 2018-10-18 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Bt Search vendor "Bt" | Voyager 2091 Wireless Adsl Router Search vendor "Bt" for product "Voyager 2091 Wireless Adsl Router" | <= 2.21.05.08m_a2pb018c1.d16d Search vendor "Bt" for product "Voyager 2091 Wireless Adsl Router" and version " <= 2.21.05.08m_a2pb018c1.d16d" | - |
Affected
| ||||||
| Bt Search vendor "Bt" | Voyager 2091 Wireless Adsl Router Search vendor "Bt" for product "Voyager 2091 Wireless Adsl Router" | <= 3.01m Search vendor "Bt" for product "Voyager 2091 Wireless Adsl Router" and version " <= 3.01m" | - |
Affected
| ||||||