CVE-2014-6436

Aztech ADSL DSL5018EN 1T1R, DSL705E, and DSL705EU devices improperly manage sessions, which allows remote attackers to bypass authentication in opportunistic circumstances and execute arbitrary commands with administrator privileges by leveraging an existing web portal login...

CVE-2014-6435

cgi-bin/AZRetrain.cgi in Aztech ADSL DSL5018EN 1T1R, DSL705E, and DSL705EU devices does not check for authentication, which allows remote attackers to cause a denial of service WAN connectivity reset via a direct request...

CVE-2014-6437

CVE-2014-6437 concerns Aztech ADSL devices (DSL5018EN 1T1R, DSL705E, DSL705EU) where an information-disclosure vulnerability exists involving ROM file vectors. The NVD entry describes remote attackers obtaining sensitive device configuration data, with CVSS nvd2.0 base score 5.0 (Network, Low att...

CVE-2014-6437

Aztech ADSL DSL5018EN 1T1R, DSL705E, and DSL705EU devices allow remote attackers to obtain sensitive device configuration information via vectors involving the ROM file...

SingTel / Aztech DSL8900GR(AC) Authentication Bypass

Credit: Cort Date: 5 Aug 2017 CVE: Not assigned Vendor: Aztech https://www.aztech.com / SingTel https://www.singtel.com/ Product: Aztech DSL8900GRAC router Versions Affected: firmware 340.6.1-007 latest available as of 9 Nov 2017 CVSS v3 Base Score: 8.8 AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Fix: No...

Multiple Vulnerabilities with Aztech Modem Routers

PRODUCT DESCRIPTION The Aztech ADSL family of modems/routes are shipped to residential and SOHO users that desires speed from 150-300mbps rate. This modem/router also supports IEEE802.11b/g/n as a Wireless LAN Access point. The vulnerable model numbers are: DSL5018EN 1T1R Shipped with Globe Telec...

Aztech routers multiple security vulnerabilities

DoS, unauthorized access, information leakage...

Aztech Routers - cgi-binAZ_Retrain.cgi Denial of Service

Aztech Routers - cgi-binAZRetrain.cgi Denial of Service / source: https://www.securityfocus.com/bid/69809/info Multiple Aztech routers are prone to a denial-of-service vulnerability. Attackers may exploit this issue to cause an affected device to crash, resulting in a denial-of-service condition...

Aztech Modem Routers - Information Disclosure

Aztech Modem Routers - Information Disclosure / source: https://www.securityfocus.com/bid/69808/info Aztech Modem Routers are prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. / HOST=$1...

Aztech Modem Routers - Information Disclosure

/ source: https://www.securityfocus.com/bid/69808/info Aztech Modem Routers are prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. / HOST=$1 PORT=$2 PARM1="\x48\x6f\x73\x74\x3a\x20"...

Aztech Modem Routers - Session Hijacking

source: https://www.securityfocus.com/bid/69811/info Multiple Aztech Modem Routers are prone to a session-hijacking vulnerability. An attacker can exploit this issue to gain unauthorized access to the affected device. !/usr/bin/perl Title: Aztech Modem Broken Session Management Exploit Author: Er...

Aztech Modem Routers - Session Hijacking

Aztech Modem Routers - Session Hijacking source: https://www.securityfocus.com/bid/69811/info Multiple Aztech Modem Routers are prone to a session-hijacking vulnerability. An attacker can exploit this issue to gain unauthorized access to the affected device. !/usr/bin/perl Title: Aztech Modem...

Aztech DSL5018EN / DSL705E / DSL705EU DoS / Broken Session Management

PRODUCT DESCRIPTION The Aztech ADSL family of modems/routes are shipped to residential and SOHO users that desires speed from 150-300mbps rate. This modem/router also supports IEEE802.11b/g/n as a Wireless LAN Access point. The vulnerable model numbers are: DSL5018EN 1T1R Shipped with Globe Telec...

Aztech Routers - '/cgi-bin/AZ_Retrain.cgi' Denial of Service

/ source: https://www.securityfocus.com/bid/69809/info Multiple Aztech routers are prone to a denial-of-service vulnerability. Attackers may exploit this issue to cause an affected device to crash, resulting in a denial-of-service condition. Aztech DSL5018EN, DSL705E and DSL705EU are vulnerable. ...

Default configuration

Aztech ADSL2/2+ 4-port router has a default "isp" account with a default "isp" password, which allows remote attackers to obtain access if this default is not changed...

CVE-2008-6588

Aztech ADSL2/2+ 4-port router has a default "isp" account with a default "isp" password, which allows remote attackers to obtain access if this default is not changed...

CVE-2008-6588

CVE-2008-6588 involves Aztech ADSL2/2+ 4-port routers with a default "isp" account and password, enabling remote access if not changed. Connected documents corroborate a default-credentials issue across several Aztech models, but no concrete patch, mitigation steps, or exploitation details are pr...

CVE-2008-6588

Aztech ADSL2/2+ 4-port router has a default "isp" account with a default "isp" password, which allows remote attackers to obtain access if this default is not changed...

Design/Logic Flaw

cgi-bin/script in Aztech ADSL2/2+ 4-port router 3.7.0 build 070426 allows remote attackers to execute arbitrary commands via shell metacharacters in the query string...

CVE-2008-6554

cgi-bin/script in Aztech ADSL2/2+ 4-port router 3.7.0 build 070426 allows remote attackers to execute arbitrary commands via shell metacharacters in the query string...