PT-2011-4970 · Thomson · Thomson Tg585
Daniel Garcia
·
Published
2011-11-22
·
Updated
2012-03-08
·
CVE-2011-4506
CVSS v2.0
7.5
High
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Thomson TG585 firmware versions prior to 7.4.3.2
Description
The issue allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an external forwarding issue.
Recommendations
For firmware versions prior to 7.4.3.2, update to firmware version 7.4.3.2 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Thomson Tg585