Remote Command Execution via Modem Guard Time Vulnerability

Remote Command Execution via Modem Guard Time Vulnerability

CVE-1999-1228 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Various modems that do not implement a guard time, or are configured with a guard time of 0, can allow remote attackers to execute arbitrary modem commands such as ATH, ATH0, etc., via a "+++" sequence that appears in ICMP packets, the subject of an e-mail message, IRC commands, and others.

Learn more about our Web Application Penetration Testing UK.