CVE-2007-2649
CVE-2007-2649
Deutsche Telekom (T-com) Speedport W 700v uses JavaScript delays for invalid authentication attempts to the CGI script, which allows remote attackers to bypass the delays and conduct brute-force attacks via direct calls to the authentication CGI script.
Produtos afetados
n/a · n/aQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →Referências
http://osvdb.org/36011http://secunia.com/advisories/25266http://securityreason.com/securityalert/2705https://exchange.xforce.ibmcloud.com/vulnerabilities/34334http://www.devtarget.org/speedport700-advisory-05-2007.txthttp://www.securityfocus.com/archive/1/468361/100/0/threadedhttp://www.securityfocus.com/bid/23967