The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Thomson SpeedTouch

Technicolor TC7200: information disclosure via GatewaySettings.bin
An attacker can use GatewaySettings.bin of Technicolor TC7200, in order to obtain the administrator password...
BID-65774, CVE-2014-1677, VIGILANCE-VUL-14314
Technicolor TC7200: Cross Site Request Forgery
An attacker can trigger a Cross Site Request Forgery of Technicolor TC7200, in order to force the victim to perform operations...
CVE-2014-0621, VIGILANCE-VUL-14102
Technicolor TC7200: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Technicolor TC7200, in order to execute JavaScript code in the context of the web site...
CVE-2014-0620, VIGILANCE-VUL-14016, WLB-2014010017
Thomson SpeedTouch ST780: script injection in the administration page
An attacker can setup a DNS redirect, and then invite the victim to display the help page of Thomson SpeedTouch ST780, in order to execute JavaScript code in the context of the administration web service...
VIGILANCE-VUL-11977, waraxe-2012-SA#090
Technicolor Thomson TWG850-4: bypassing authentication
An unauthenticated attacker can perform administration tasks on the Technicolor Thomson TWG850-4 modem...
BID-55621, VIGILANCE-VUL-11964
Technicolor SpeedTouch: internal port scanning via UPnP
An internet attacker can use the UPnP feature of the Technicolor SpeedTouch modem, in order to alter its configuration...
BID-50810, CVE-2011-4499, CVE-2011-4500, CVE-2011-4501, CVE-2011-4502, CVE-2011-4503, CVE-2011-4504, CVE-2011-4505, CVE-2011-4506, VIGILANCE-VUL-11181, VU#357851
Speedtouch: predictable WPA keys
An attacker can use the SSID to predict the default WPA key...
BID-28893, VIGILANCE-VUL-7780
Thomson SpeedTouch: several vulnerabilities
Several vulnerabilities of Thomson SpeedTouch permit an attacker to create Cross Site Scripting attacks or to elevate his privileges...
BID-25972, BID-26808, VIGILANCE-VUL-7336
SpeedTouch: Cross Site Scripting
The "name" parameter of LocalNetwork page can be used to conduct a Cross Site Scripting attack...
BID-16839, CVE-2006-0947, VIGILANCE-VUL-5655
Corruption du cache DNS du modem
Un attaquant du réseau local peut envoyer une requête DHCP afin d'ajouter une entrée dans le cache DNS...
BID-11664, V6-SPEEDTOUCHDHCPDNS, VIGILANCE-VUL-4518
Our database contains other pages. You can request a free trial to read them.