CVE-2006-2901

The web server for D-Link Wireless Access-Point (DWL-2100ap) firmware 2.10na and earlier allows remote attackers to obtain sensitive system information via a request to an arbitrary .cfg file, which returns configuration information including passwords.

Date published : 2006-06-07

http://www.securityfocus.com/bid/18299

http://www.securityfocus.com/archive/1/436281/100/0/threaded