Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
BID:39646
Info
Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
| Bugtraq ID: | 39646 |
| Class: | Design Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 22 2010 12:00AM |
| Updated: | Mar 19 2015 08:47AM |
| Credit: | hkm |
| Vulnerable: |
Huawei Technologies EchoLife HG520 3.10.18.7-1.0.5.0 Huawei Technologies EchoLife HG520 3.10.18.5-1.0.5.0 |
| Not Vulnerable: | |
Discussion
Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
The Huawei EchoLife HG520 is prone to an information-disclosure vulnerability.
Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
The following Huawei EchoLife HG520 firmware and software versions are vulnerable:
Firmware 3.10.18.7-1.0.7.0, 3.10.18.5-1.0.7.0, 3.10.18.4
Software Versions: V100R001B120Telmex, V100R001B121Telmex
The Huawei EchoLife HG520 is prone to an information-disclosure vulnerability.
Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
The following Huawei EchoLife HG520 firmware and software versions are vulnerable:
Firmware 3.10.18.7-1.0.7.0, 3.10.18.5-1.0.7.0, 3.10.18.4
Software Versions: V100R001B120Telmex, V100R001B121Telmex
Exploit / POC
Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
An attacker can exploit this issue using readily available tools.
The following example is available:
An attacker can exploit this issue using readily available tools.
The following example is available:
Solution / Fix
Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Huawei EchoLife HG520 Remote Information Disclosure Vulnerability
References:
References:
- EchoLife HG520 - Homepage (Huawei)