The UPnP IGD implementation on SpeedTouch 5x6 devices with firmware prior to 6.2.29 allows remote malicious users to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alcatel speedtouch_5x6_router_firmware |
||
alcatel speedtouch_5x6_router |