CVE-2007-0357

Name of the Vulnerable Software and Affected Versions: Fritz!DSL version 02.02.29

Description: A directory traversal issue exists in the AVM IGD CTRL Service, allowing remote attackers to read arbitrary files. This is achieved by using ..%5C (URL-encoded dot dot backslash) sequences in a URI requested from the AR7 webserver.

Recommendations: For Fritz!DSL version 02.02.29, update to a newer version that contains a fix for this issue.