CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Aztech DSL5005EN firmware 1.00.AZ2013-05-10 and possibly other versions allows unauthenticated attackers to change the administrator password via a crafted POST request to sysAccess.asp. This allows full administrative control of the router without authentication...

6.8AI score0.00233EPSS

Exploits0References3

Exploit DB•added 2025/03/22 12:0 a.m.•283 views

Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change (Unauthenticated)

Exploit Title: Aztech DSL5005EN Router - 'sysAccess.asp' Admin Password Change Unauthenticated Date: 2025-02-26 Exploit Author: Amir Hossein Jamshidi Vendor Homepage: https://www.aztech.com Version: DSL5005EN Tested on: Linux CVE: N/A import requests import argparse print''' aztech DSL5005EN...

7.4AI score

Exploits0

NVD•added 2007/09/06 7:17 p.m.•17 views

CVE-2007-4733

The Aztech DSL600EU router, when WAN access to the web interface is disabled, does not properly block inbound traffic on TCP port 80, which allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet, a related issue to...

9.3CVSS6.6AI score0.00965EPSS

Exploits1References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by