Vulnerabilities > CVE-2001-1484 - Remote Security vulnerability in Adsl Modem 1000

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

alcatel

NVD

Published: 2001-12-31

Updated: 2017-07-11

Summary

Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.

Vulnerable Configurations

Part	Description	Count
Hardware	Alcatel Alcatel Adsl Modem 1000 * Alcatel Speed Touch Adsl Modem Home	2

References

http://www.cert.org/advisories/CA-2001-08.html
http://www.kb.cert.org/vuls/id/211736
https://exchange.xforce.ibmcloud.com/vulnerabilities/6336