Home page logo

fulldisclosure logo Full Disclosure mailing list archives

Re: Sprint / Verizon MiFi CSRF+CSS Gives up GPS info to attacker
From: Adam Baldwin <adam_baldwin () ngenuity-is com>
Date: Sat, 16 Jan 2010 09:09:43 -0800

On 1/16/10 8:13 AM, A. Ramos wrote:
Hello all,

Just another one: you can access to the configuration backup without
authentication at: /config.xml.sav
If you have the Sprint MiFi with the latest firmware rev (AP 11.47.17
Router 018.0101) The correct path is


Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]