Remote Access Vulnerability in Alcatel ADSL Modems: Unauthorized Firmware and Configuration Modification via TFTP Bounce Attack

Remote Access Vulnerability in Alcatel ADSL Modems: Unauthorized Firmware and Configuration Modification via TFTP Bounce Attack

CVE-2001-1484 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.

Learn more about our Network Penetration Testing.