PT-2005-3476 · Mentor · Adsl-Fr4Ii

Tim Brown

Published

2005-08-16

Updated

2016-10-18

CVE-2005-2586

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Mentor ADSL-FR4II router version 2.00.0111

Description The issue concerns the storage of the web administration password in cleartext within the backup configuration file. This allows local users to access sensitive information.

Recommendations For version 2.00.0111, consider changing the web administration password regularly and restricting local access to the backup configuration file until a fix is available. As a temporary workaround, avoid using the backup configuration file or restrict access to it to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-2586

Affected Products

Adsl-Fr4Ii

PT-2005-3476 · Mentor · Adsl-Fr4Ii

CVE-2005-2586

Related Identifiers

Affected Products

References · 4