CVE-2006-3561

Published Jul 13, 2006

Last updated 6 years ago

Overview

Description: BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier, allow remote attackers to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh, PPP credentials via (2) btvoyager_getpppcreds.sh, and decode configuration credentials via (3) btvoyager_decoder.c.
Source: cve@mitre.org
NVD status: Modified

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:bt:voyager_2091_wireless_adsl_router:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C261D5B-7660-4D1A-B530-77E7A92D5C71",
            "versionEndIncluding": "2.21.05.08m_a2pb018c1.d16d"
          },
          {
            "criteria": "cpe:2.3:h:bt:voyager_2091_wireless_adsl_router:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C411B8FB-3E0C-4709-A7A1-802D069909AD",
            "versionEndIncluding": "3.01m"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Social media

Risk scores

CVSS 2.0

Weaknesses

Configurations

References