CVE-2008-3411

The CVE-2008-3411 entry describes a vulnerability in the Axesstel AXW-D800 modem running D2_ETH_109_01_VEBR (Jun-14-2006). The issue is that the device does not require authentication for (1) etc/config/System.html, (2) etc/config/Network.html, (3) etc/config/Security.html, (4) cgi-bin/sysconf.cg...

Security Bypass Vulnerabilities AXESSTEL

Bboyhacks bboyhacksatgmail.com AXESS.TEL CDMA 1xEV-DO FIXED WIRELESS MODEN AXW-D800 S/W Version:D2ETH10901VEBR Jun-14-2006 Default LAN IP: 192.168.0.1 http thttpd 2.25b Security Bypass Vulnerabilities basic setup http://192.168.0.1/etc/config/System.html Network...

Buffer overflow

Buffer overflow in the BrSmRcvAndCheck function in the RCHMGR module on IBM OS/400 V5R4M0, V5R4M5, and V6R1M0 allows local users to cause a denial of service task halt and main storage dump via unspecified vectors involving the running of diagnostics on a modem port. NOTE: there might be limited...

Motorolla Surfboard cable modem multiple security vulnerabilities

DoS conditions, crossite request forgery...

Sea-Surfing on the Motorola Surfboard

More information about this flaw can be found here: http://www.rooksecurity.com/blog/?p=4 Motorola Surfboard Cable Modems suffer from two Denial of Service attacks by means of Cross Site Request Forgery. The latest version of The Motorola Surfboard is affected at the time of the writing. Restarts...

Authentication flaw

The telnet service in LevelOne WBR-3460 4-Port ADSL 2/2+ Wireless Modem Router with firmware 1.00.11 and 1.00.12 does not require authentication, which allows remote attackers on the local or wireless network to obtain administrative access...

[SECURITY] Fedora 7 Update: xfce4-modemlights-plugin-0.1.3.99-2.fc7

A Xfce4 panel applet intended to simplify establishing a ppp connection via a modem...

CVE-2002-2380

NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic...

CVE-2002-2380

CVE-2002-2380 involves the NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11. The vulnerability lets remote attackers access configuration menus by sniffing undocumented usernames and passwords from network traffic. Affected component is the modem firmware; impact is exposure of config...

CVE-2003-1442

The CVE-2003-1442 entry concerns the Ericsson HM220dp ADSL modem. The web administration page reportedly does not require authentication, enabling access from the LAN side by remote attackers. The NVD/CVE references show a network‑level issue with no authenticated access, resulting in potential p...

Design Flaw in Deutsche Telekom Speedport w700v broadband router

Hi, I'd like to inform you about a vulnerability in the Deutsche Telekom Speedport w700v DSL router. Currently it's the standard device that is shipped with new DSL contracts. I - TITLE Security advisory: Weaknesses in the login process of the web interface of the Speedport w700v DSL Router and...

Linksys WAG200G - Information disclosure

Hi there, About 2 months ago I bought a wireless ADSL modem/router, the Linksys WAG200G. Just did some basic security checks and to my utter surprise the device responded with about all sensitive information it knows: Product model Password webinterface Username PPPoA Password PPPoA SSID WPA...

Hacker attack and Defense of the PPPoE authentication and use-vulnerability and early warning-the black bar safety net

A Foreword In recent years, Internet data traffic has developed rapidly, broadband users showed explosive growth, the operators in the use of xDSL, LAN, HFC, wireless and other access methods at the same time, in order to build an operable, manageable and profitable broadband network, is very...

CVE-2006-5196

The CVE affects the Motorola SURFboard SB4200 Cable Modem HTTP interface. A remote attacker can crash the device by sending a request where MfcISAPICommand is SecretProc and the Secret parameter contains a long string, leading to a denial of service. The NVD score is CVSSv2 7.8 (HIGH) with networ...

CVE-2006-5196

The HTTP interface in the Motorola SURFboard SB4200 Cable Modem allows remote attackers to cause a denial of service device crash via a request with MfcISAPICommand set to SecretProc and a long string in the Secret parameter...

CVE-2006-2337

CVE-2006-2337 describes a directory traversal vulnerability in the webcm component of the D-Link DSL-G604T Wireless ADSL Router Modem. The flaw allows an attacker to read arbitrary files by supplying an absolute path in the getpage parameter. The vulnerability affects the router’s web interface a...

CVE-2006-0947

Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtered by the modem when creating the account, but cannot be deleted by the administrator, possibly due...

CVE-2006-0947

CVE-2006-0947 affects Thomson SpeedTouch modem firmware 5.3.2.6.0. Affected component is the NewUser function where the 31 parameter can create accounts that the administrator cannot delete, due to filtering/cleansing in the admin interface. The issue allows remote attackers to create non-deletab...

CVE-2006-0946

Technical details about CVE-2006-0946 are not publicly provided in the supplied documents. No concrete information on affected products, root cause, or remediation is present. Monitor for updates.

Network film triggered by the back door of the crisis-vulnerability warning-the black bar safety net

A. The mystery of the network disconnection event On the University really“free”, all chores are to your own take care of, and even the Dorm network to do it yourself...... As a Dorm only a technician, that the task of natural falling on my head. In the end, our hostel by ZyXEL SC642 ADSL Modem a...