Murdok

**Name of the Vulnerable Software and Affected Versions** Thomson TCW690 cable modem firmware 2.1 and software ST42.03.0a **Description** The issue concerns the RgSecurity form in the HTTP server, which fails to properly validate the password before making changes. This allows remote attackers on the LAN to gain access via a direct POST request to the `/` endpoint, although the specific endpoint is not mentioned. **Recommendations** For firmware 2.1 and software ST42.03.0a, consider restricting access to the RgSecurity form in the HTTP server until a patch is available. As a temporary workaround, limit LAN access to the HTTP server to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Thomson TWC305 version ST42.03.0a Thomson TWC315 version ST42.03.0a Thomson TCW690 version ST42.03.0a **Description** The issue allows remote attackers to cause unstable service, possibly due to a buffer overflow, by sending a long GET request to the HTTP server. **Recommendations** For Thomson TWC305 version ST42.03.0a, restrict access to the HTTP server until a fix is available. For Thomson TWC315 version ST42.03.0a, limit the length of incoming GET requests to prevent unstable service. For Thomson TCW690 version ST42.03.0a, consider disabling the HTTP server as a temporary workaround until a patch is available.