Security Advisory

CVE-2006-0947

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2006-03-01 02:00:00
Last updated 2024-08-07 16:56:14
Assigner mitre
State PUBLISHED

Description

Thomson SpeedTouch modem running firmware 5.3.2.6.0 allows remote attackers to create users that cannot be deleted via scripting code in the "31" parameter in a NewUser function, which is not filtered by the modem when creating the account, but cannot be deleted by the administrator, possibly due to cleansing that occurs in the administrator interface.