CVE-2006-3561

BT Voyager 2091 Wireless <3.01m - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-3561. PoCs published by Adrian _pagvac_ Pastor.

AI-analyzed exploit summary The provided entry is a reference to a tarball containing exploits for multiple vulnerabilities in the BT Voyager 2091 Wireless ADSL router. It does not include actual exploit code but points to an external source for the binaries.

Description

BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and earlier, and 3.01m and earlier, allow remote attackers to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh, PPP credentials via (2) btvoyager_getpppcreds.sh, and decode configuration credentials via (3) btvoyager_decoder.c.

Exploits (1)

exploitdb WRITEUP VERIFIED

by Adrian _pagvac_ Pastor · textremotehardware

https://www.exploit-db.com/exploits/2034

View Code ZIP pw:eip

The provided entry is a reference to a tarball containing exploits for multiple vulnerabilities in the BT Voyager 2091 Wireless ADSL router. It does not include actual exploit code but points to an external source for the binaries.

Classification

Writeup 90%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: BT Voyager 2091 (Wireless ADSL)

No auth needed

Prerequisites: Access to the tarball linked in the reference

devstral-2 · analyzed Feb 16, 2026 Full analysis →