PT-2007-5886 · Aztech · Aztech Dsl600Eu
Acheddamiman
·
Published
2007-09-06
·
Updated
2018-10-15
·
CVE-2007-4733
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions:
Aztech DSL600EU router (affected versions not specified)
Description:
The issue concerns the Aztech DSL600EU router, where disabling WAN access to the web interface does not properly block inbound traffic on TCP port 80. This allows remote attackers to connect to the web interface by guessing a TCP sequence number, possibly involving spoofing of an ARP packet.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Aztech Dsl600Eu