In spanish: http://www.securitybydefault.com/2010/01/vulnerabilidad-en-modemrouter-3g.html

Producto: Novatel MiFi 2352
Version:
access point firmware   11.47.17
router firmware:        012
modem firmware: 5.15.00.0-00 [2009-06-26 10:24:29]

Vulnerability:
You can access to xml configuration file with clear passwords bypassin
authentication process.

Exploit:
Just http://ip/config.xml.sav or http://ip/config.xml.save

Discover:
Alejandro Ramos - 16/01/2010

--
Alejandro Ramos -- aka dab
http://www.securitybydefault.com



-- 
Alejandro Ramos
http://twitter.com/aramosf