CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-1252

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1900%
EPSS Percentile25.09th
Published2008年3月10日
Last Modified2026年4月23日

Vulnerability Description

b_banner.stm (aka the login page) on the Deutsche Telekom Speedport W500 DSL router allows remote attackers to obtain the logon password by reading the pwd field in the HTML source.

Affected Platforms (CPE)

🔌
Deutsche Telekom

Speedport W500 Dsl Router

All versions

References & Advisories

🔗 http://secunia.com/advisories/29414
🔗 http://www.gnucitizen.org/projects/router-hacking-challenge/
🔗 http://www.securityfocus.com/archive/1/489009/100/0/threaded
🔗 http://www.securityfocus.com/bid/28382
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/41128
🔗 http://secunia.com/advisories/29414
🔗 http://www.gnucitizen.org/projects/router-hacking-challenge/
🔗 http://www.securityfocus.com/archive/1/489009/100/0/threaded

関連する脆弱性情報

CVE-2008-034310.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 9.0.1.5 FIPS+, 9.2.0.8, 9.2.0.8DV, and 10.1.0.5 has u...

CVE-2008-535310.0

The Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 16 and earlier; and SDK and...

CVE-2008-535510.0

The "Java Update" feature for Java Runtime Environment (JRE) for Sun JDK and JRE 6 Update 10 and earlier; JDK and JRE 5.0 Update 1...

CVE-2008-073510.0

SQL injection vulnerability in mod/gallery/ajax/gallery_data.php in AuraCMS 2.2 allows remote attackers to execute arbitrary SQL c...