Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device's configurations.
References
Link | Resource |
---|---|
http://www.securityfocus.com/archive/1/175229 | |
http://www.kb.cert.org/vuls/id/490344 | US Government Resource |
http://www.securityfocus.com/bid/2566 | Patch |
http://www.cert.org/advisories/CA-2001-08.html | US Government Resource |
https://exchange.xforce.ibmcloud.com/vulnerabilities/6336 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2001-04-09 21:00
Updated : 2017-07-10 18:29
NVD link : CVE-2001-1426
Mitre link : CVE-2001-1426
JSON object : View
CWE
Products Affected
alcatel
- speed_touch_home