CVE-2014-6436

Name of the Vulnerable Software and Affected Versions Aztech ADSL DSL5018EN (1T1R) version not specified Aztech ADSL DSL705E version not specified Aztech ADSL DSL705EU version not specified

Description The issue is related to improper session management in the affected devices, allowing remote attackers to bypass authentication and execute arbitrary commands with administrator privileges under certain circumstances, by leveraging an existing web portal login.

Recommendations For Aztech ADSL DSL5018EN (1T1R), consider restricting access to the web portal until a fix is available. For Aztech ADSL DSL705E, restrict access to the web portal until a fix is available. For Aztech ADSL DSL705EU, restrict access to the web portal until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.