SecuritySpace - CVE-2017-11587

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-11587

Description: On Cisco DDR2200 ADSL2+ Residential Gateway DDR2200B-NA-AnnexA- FCC-V00.00.03.45.4E and DDR2201v1 ADSL2+ Residential Gateway DDR2201v1-NA-AnnexA-FCC-V00.00.03.28.3 devices, there is directory traversal in the filename parameter to the /download.conf URI.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-11587
BugTraq ID: 100484
http://www.securityfocus.com/bid/100484
http://seclists.org/fulldisclosure/2017/Jul/26

CVE ID:	CVE-2017-11587
Description:	On Cisco DDR2200 ADSL2+ Residential Gateway DDR2200B-NA-AnnexA- FCC-V00.00.03.45.4E and DDR2201v1 ADSL2+ Residential Gateway DDR2201v1-NA-AnnexA-FCC-V00.00.03.28.3 devices, there is directory traversal in the filename parameter to the /download.conf URI.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-11587 BugTraq ID: 100484 http://www.securityfocus.com/bid/100484 http://seclists.org/fulldisclosure/2017/Jul/26