T-Com: Security Vulnerabilities
Deutsche Telekom (T-com) Speedport W 700v uses JavaScript delays for invalid authentication attempts to the CGI script, which allows remote attackers to bypass the delays and conduct brute-force attacks via direct calls to the authentication CGI script.
CVSS Score
7.8
EPSS Score
0.006
Published
2007-05-14
T-Com Speedport 500V routers with firmware 1.31 allow remote attackers to bypass authentication and reconfigure the device via a LOGINKEY=TECOM cookie value.
CVSS Score
7.5
EPSS Score
0.009
Published
2007-01-23