← back
CVE-2007-2649

CVE-2007-2649

EPSS 1.9%
Deutsche Telekom (T-com) Speedport W 700v uses JavaScript delays for invalid authentication attempts to the CGI script, which allows remote attackers to bypass the delays and conduct brute-force attacks via direct calls to the authentication CGI script.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/36011http://secunia.com/advisories/25266http://securityreason.com/securityalert/2705https://exchange.xforce.ibmcloud.com/vulnerabilities/34334http://www.devtarget.org/speedport700-advisory-05-2007.txthttp://www.securityfocus.com/archive/1/468361/100/0/threadedhttp://www.securityfocus.com/bid/23967