CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2008-1252

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1900%
EPSS Percentile25.09th
Published2008年3月10日
Last Modified2026年4月23日

Vulnerability Description

b_banner.stm (aka the login page) on the Deutsche Telekom Speedport W500 DSL router allows remote attackers to obtain the logon password by reading the pwd field in the HTML source.

Affected Platforms (CPE)

🔌
Deutsche Telekom

Speedport W500 Dsl Router

All versions

References & Advisories

🔗 http://secunia.com/advisories/29414
🔗 http://www.gnucitizen.org/projects/router-hacking-challenge/
🔗 http://www.securityfocus.com/archive/1/489009/100/0/threaded
🔗 http://www.securityfocus.com/bid/28382
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/41128
🔗 http://secunia.com/advisories/29414
🔗 http://www.gnucitizen.org/projects/router-hacking-challenge/
🔗 http://www.securityfocus.com/archive/1/489009/100/0/threaded

相關漏洞威脅

CVE-2008-461510.0

Unspecified vulnerability in i_utils.asp in PortalApp before 4.01a has unknown impact and attack vectors.

CVE-2008-034410.0

Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.3 has unknown impact and remote a...

CVE-2008-665110.0

Static code injection vulnerability in edithistory.php in OxYProject OxYBox 0.85 allows remote attackers to inject arbitrary PHP c...

CVE-2008-034510.0

Unspecified vulnerability in the Core RDBMS component in Oracle Database 11.1.0.6 has unknown impact and remote attack vectors, ak...