Thomson TCW690 Cable Modem Multiple Vulnerabilities
BID:12595
Info
Thomson TCW690 Cable Modem Multiple Vulnerabilities
| Bugtraq ID: | 12595 |
| Class: | Unknown |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 19 2005 12:00AM |
| Updated: | Feb 19 2005 12:00AM |
| Credit: | Discovery is credited to MurDoK <[email protected]>. |
| Vulnerable: |
Thomson TCW690 Cable Modem ST42.03.0a |
| Not Vulnerable: | |
Discussion
Thomson TCW690 Cable Modem Multiple Vulnerabilities
Thomson TCW690 cable modem is reported prone to multiple remote vulnerabilities. These issues may allow an attacker to cause a denial of service condition and/or gain unauthorized access to the device.
The following specific issues were identified:
The device is reported prone to a partial denial of service condition that results from a boundary condition error. Reportedly, a successful attack can cause the device to fail to process requests for a limited period of time. This issue may be related to BID 9091 (Thomson Cable Modem Remote Denial Of Service Vulnerability).
Another vulnerability affecting the modem can allow attackers to gain unauthorized access to the device. It is reported that the device does not properly verify users' authentication credentials when handling an HTTP POST request.
Thomson TCW690 with firmware version ST42.03.0a is reported vulnerable to these issues. It is possible that other versions are affected as well.
Thomson TCW690 cable modem is reported prone to multiple remote vulnerabilities. These issues may allow an attacker to cause a denial of service condition and/or gain unauthorized access to the device.
The following specific issues were identified:
The device is reported prone to a partial denial of service condition that results from a boundary condition error. Reportedly, a successful attack can cause the device to fail to process requests for a limited period of time. This issue may be related to BID 9091 (Thomson Cable Modem Remote Denial Of Service Vulnerability).
Another vulnerability affecting the modem can allow attackers to gain unauthorized access to the device. It is reported that the device does not properly verify users' authentication credentials when handling an HTTP POST request.
Thomson TCW690 with firmware version ST42.03.0a is reported vulnerable to these issues. It is possible that other versions are affected as well.
Exploit / POC
Thomson TCW690 Cable Modem Multiple Vulnerabilities
An exploit is not required.
The following proof of concept examples are available:
Denial of service:
http://www.example.com/AAAA[about 2000 A's]AAA
Unauthorized access:
An exploit is not required.
The following proof of concept examples are available:
Denial of service:
http://www.example.com/AAAA[about 2000 A's]AAA
Unauthorized access:
Solution / Fix
Thomson TCW690 Cable Modem Multiple Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Thomson TCW690 Cable Modem Multiple Vulnerabilities
References:
References:
- TCW690 Product Page (Thomson)
- Thomson TCW690 POST Password Validation Vulnerability (MurDoK