Vulnerability Description
The Thomson/Alcatel SpeedTouch 7G router, as used for the BT Home Hub 6.2.6.B and earlier, allows remote attackers on an intranet to bypass authentication and gain administrative access via vectors including a '/' (slash) character at the end of the PATH_INFO to cgi/b, aka "double-slash auth bypass." NOTE: remote attackers outside the intranet can exploit this by leveraging a separate CSRF vulnerability. NOTE: SpeedTouch 780 might also be affected by some of these issues.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alcatel | Speedtouch 7G Router | All versions |
| Bt | Home Hub | <= 6.2.6.b |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/3213
- http://www.gnucitizen.org/blog/bt-home-flub-pwnin-the-bt-home-hub
- http://www.gnucitizen.org/blog/holes-in-embedded-devices-authentication-bypass-pExploit
- http://www.gnucitizen.org/projects/router-hacking-challenge/
- http://www.securityfocus.com/archive/1/481835/100/0/threaded
- http://www.securityfocus.com/archive/1/489009/100/0/threaded
- http://www.securityfocus.com/bid/25972Exploit
- http://www.theregister.co.uk/2007/10/09/bt_home_hub_vuln/
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41271
- http://securityreason.com/securityalert/3213
- http://www.gnucitizen.org/blog/bt-home-flub-pwnin-the-bt-home-hub
- http://www.gnucitizen.org/blog/holes-in-embedded-devices-authentication-bypass-pExploit
- http://www.gnucitizen.org/projects/router-hacking-challenge/
- http://www.securityfocus.com/archive/1/481835/100/0/threaded
- http://www.securityfocus.com/archive/1/489009/100/0/threaded
FAQ
What is CVE-2007-5383?
CVE-2007-5383 is a vulnerability with a CVSS score of 10.0 (HIGH). The Thomson/Alcatel SpeedTouch 7G router, as used for the BT Home Hub 6.2.6.B and earlier, allows remote attackers on an intranet to bypass authentication and gain administrative access via vectors in...
How severe is CVE-2007-5383?
CVE-2007-5383 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5383?
Check the references section above for vendor advisories and patch information. Affected products include: Alcatel Speedtouch 7G Router, Bt Home Hub.