4 matches found
Arris NVG599 AT&T U-verse ROOT Acquisition Vulnerability
The Arris NVG599 is a router product from the Arris Group of Companies in the U.S. The AT&T U-verse is the firmware used in the. A security vulnerability exists in the AT&T U-verse version 9.2.2h0d83 in the Arris NVG599. A remote attacker can exploit this vulnerability to gain root privileges by...
CVE-2017-14116
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote attackers to obtain root privileges by establishing a session on port 49955 an...
Code injection
The AT&T U-verse 9.2.2h0d83 firmware for the Arris NVG599 device, when IP Passthrough mode is not used, configures WAN access to a caserver https service with the tech account and an empty password, which allows remote attackers to obtain root privileges by establishing a session on port 49955 an...
Arris Modems Hardcoded Backdoor Vulnerability (CNVD-2017-24359)
Arris Modems are modems produced by telecom equipment manufacturer Arris, customized for AT&T home users for on-net access. A hard-coded backdoor vulnerability exists in Arris Modems, which have a built-in web server that allows an attacker to access the back-end administration panel through port...