Lucene search
MitreCVE-2001-1426HistoryMar 22, 2005 - 5:00 a.m.
CVE-2001-1426
2005-03-2205:00:00
mitre
web.nvd.nist.gov
28
cve-2001-1426
alcatel speed touch
tftp server
remote attacks
firmware versions
device configurations
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.016
Percentile
87.3%
Alcatel Speed Touch running firmware KHDSAA.108 and KHDSAA.132 through KHDSAA.134 has a TFTP server running without a password, which allows remote attackers to change firmware versions or the device’s configurations.
Affected configurations
Node
alcatelspeed_touch_homeMatchkhdsaa.108
ORalcatelspeed_touch_homeMatchkhdsaa.132
ORalcatelspeed_touch_homeMatchkhdsaa.133
ORalcatelspeed_touch_homeMatchkhdsaa.134
| Vendor | Product | Version | CPE |
|---|---|---|---|
| alcatel | speed_touch_home | khdsaa.108 | cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:* |
| alcatel | speed_touch_home | khdsaa.132 | cpe:2.3:h:alcatel:speed_touch_home:khdsaa.132:*:*:*:*:*:*:* |
| alcatel | speed_touch_home | khdsaa.133 | cpe:2.3:h:alcatel:speed_touch_home:khdsaa.133:*:*:*:*:*:*:* |
| alcatel | speed_touch_home | khdsaa.134 | cpe:2.3:h:alcatel:speed_touch_home:khdsaa.134:*:*:*:*:*:*:* |
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
Low
EPSS
0.016
Percentile
87.3%
Related for CVE-2001-1426