Asus AAM6330BI/AAM6000EV ADSL Router - Information Disclosure

Author: cw
type: remote
platform: hardware
port: 
date_added: 2003-07-14 
date_updated: 2012-11-22 
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/8183/info

It has been reported that remote users may be able to obtain sensitive information from Asus ADSL routers. It is possible to request files from the built-in Web server that contain information such as usernames, passwords and other configuration information.

http://<host>/userdata

http://<host>/snmpinit