Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2010-2307 PoC — Motorola SBV6120E SURFboard Digital Voice Modem多个目录遍历漏洞

Source
https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2010/CVE-2010-2307.yaml
Associated Vulnerability
Title:Motorola SBV6120E SURFboard Digital Voice Modem多个目录遍历漏洞 (CVE-2010-2307)
Description:运行firmware SBV6X2X-1.0.0.5-SCM-02-SHPC的Motorola SURFBoard电缆调制解调器的网络服务器存在多个目录遍历漏洞,远程攻击者可利用(1) "//" , (2) ../序列,以及URL请求的".."编码序列读取任意文件。
Description
Multiple directory traversal vulnerabilities in the web server for Motorola SURFBoard cable modem SBV6120E running firmware SBV6X2X-1.0.0.5-SCM-02-SHPC allow remote attackers to read arbitrary files via (1) "//" (multiple leading slash), (2) ../ (dot dot) sequences, and encoded dot dot sequences in a URL request.
File Snapshot

 id: CVE-2010-2307

info:
  name: Motorola SBV6120E SURFboard Digital Voice Modem SBV6X2X-1.0.0.5-SCM

...
Shenlong Bot has cached this for you
Remarks
    1. It is advised to access via the original source first.
    2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).
    3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.