CVE Details for CVE: CVE-2001-1424
Summary
Alcatel Speed Touch ADSL modem running firmware KHDSAA.108, KHDSAA.132, KHDSBA.133, and KHDSAA.134 has a blank default password, which allows remote attackers to gain unauthorized access.
| Timestamps | |
|---|---|
| Last major update | 11-07-2017 - 01:29 |
| Published | 10-04-2001 - 04:00 |
| Last modified | 11-07-2017 - 01:29 |
Vulnerable Configurations
-
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:*
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.108:*:*:*:*:*:*:*
-
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.132:*:*:*:*:*:*:*
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.132:*:*:*:*:*:*:*
-
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.133:*:*:*:*:*:*:*
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.133:*:*:*:*:*:*:*
-
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.134:*:*:*:*:*:*:*
cpe:2.3:h:alcatel:speed_touch_home:khdsaa.134:*:*:*:*:*:*:*
CWE
CVSS
Base
7.5
Impact
6.4
Exploitability
10.0
Access
| Vector | Complexity | Authentication |
|---|---|---|
| NETWORK | LOW | NONE |
Impact
| Confidentiality | Integrity | Availability |
|---|---|---|
| PARTIAL | PARTIAL | PARTIAL |
CVSS3
None
VIA4 references
cvss-vector
via4
refmap
via4
| bid | 2568 |
| bugtraq | 20010410 multiple vulnerabilities in Alcatel Speed Touch DSL modems |
| cert | CA-2001-08 |
| cert-vn | VU#212088 |
| misc | http://security.sdsc.edu/self-help/alcatel/alcatel-bugs.html |
| xf | alcatel-blank-password(6335) |