Lucene search

[email protected]NVD:CVE-2007-0435

HistoryJan 23, 2007 - 2:28 a.m.

CVE-2007-0435

2007-01-2302:28:00

CWE-287

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.095

Percentile

94.8%

JSON

T-Com Speedport 500V routers with firmware 1.31 allow remote attackers to bypass authentication and reconfigure the device via a LOGINKEY=TECOM cookie value.

Affected configurations

Nvd

Node

t-comspeedport_500vMatch-

AND

t-comspeedport_500v_firmwareMatch1.31

VendorProductVersionCPE
t-comspeedport_500v-cpe:2.3:h:t-com:speedport_500v:-:*:*:*:*:*:*:*
t-comspeedport_500v_firmware1.31cpe:2.3:o:t-com:speedport_500v_firmware:1.31:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
t-com	speedport_500v	-	cpe:2.3:h:t-com:speedport_500v:-:::::::*
t-com	speedport_500v_firmware	1.31	cpe:2.3:o:t-com:speedport_500v_firmware:1.31:::::::*

References

osvdb.org/32995

secunia.com/advisories/23853

www.securityfocus.com/archive/1/457453/100/0/threaded

www.securityfocus.com/archive/1/457645/100/0/threaded

www.securityfocus.com/archive/1/457656/100/0/threaded

www.securityfocus.com/archive/1/460319/100/0/threaded

www.securityfocus.com/bid/22160

exchange.xforce.ibmcloud.com/vulnerabilities/31621

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

Confidence

Low

EPSS

0.095

Percentile

94.8%

JSON

Related for NVD:CVE-2007-0435

cve1 prion1 securityvulns1 cvelist1