Arbitrary Port Mapping Vulnerability in Thomson TG585 (Technicolor) with Firmware 7.x before 7.4.3.2

Arbitrary Port Mapping Vulnerability in Thomson TG585 (Technicolor) with Firmware 7.x before 7.4.3.2

CVE-2011-4506 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The UPnP IGD implementation on the Thomson (aka Technicolor) TG585 with firmware 7.x before 7.4.3.2 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.

Learn more about our External Network Penetration Testing.