Petko D. Petkov

**Name of the Vulnerable Software and Affected Versions** Apple QuickTime versions prior to 7.5 **Description** The issue allows remote attackers to execute arbitrary programs by using the url.dll!FileProtocolHandler handler for unrecognized URIs in qt:next attributes within SMIL text in video files. This handler sends these URIs to explorer.exe, enabling the execution of malicious programs. **Recommendations** For Apple QuickTime versions prior to 7.5, update to version 7.5 or later to resolve the issue.

Name of the Vulnerable Software and Affected Versions: Thomson/Alcatel SpeedTouch 7G router versions 6.2.6.B and earlier Description: The issue allows remote attackers on an intranet to bypass authentication and gain administrative access. This can be achieved via vectors including a '/' (slash) character at the end of the PATH INFO to `cgi/b`. Additionally, remote attackers outside the intranet can exploit this by leveraging a separate CSRF vulnerability. Recommendations: For versions 6.2.6.B and earlier, as a temporary workaround, consider restricting access to the `cgi/b` endpoint to minimize the risk of exploitation. Avoid using the '/' character at the end of the PATH INFO to prevent bypassing authentication. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Thomson/Alcatel SpeedTouch 7G router versions 6.2.6.B and earlier BT Home Hub version 6.2.6.B and earlier SpeedTouch 780 (affected versions not specified) Description: The issue allows remote attackers to perform actions as administrators via unspecified POST requests. This can be demonstrated by enabling an inbound remote-assistance HTTPS session on TCP port 51003. An authentication bypass can be leveraged to exploit this issue in the absence of an existing administrative session. Recommendations: For Thomson/Alcatel SpeedTouch 7G router versions 6.2.6.B and earlier, consider restricting access to administrative functions until a fix is available. For BT Home Hub version 6.2.6.B and earlier, restrict inbound remote-assistance HTTPS sessions on TCP port 51003 to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Thomson/Alcatel SpeedTouch 7G router versions 6.2.6.B and earlier Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Recommendations: For versions 6.2.6.B and earlier, update to a version later than 6.2.6.B to resolve the issue.