CVE-1999-1524

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Aug 7, 1999
Updated: Nov 20, 2024

Summary

CVE-1999-1524 is a vulnerability affecting FlowPoint DSL router firmware versions before 3.0.8. This issue permits remote attackers to exploit a password recovery feature through the network, making it possible for them to engage in brute force password guessing. The standard limitation of this feature to the serial console port has been bypassed, posing a significant security risk. Attackers can take advantage of this vulnerability to gain unauthorized access to the router, potentially leading to data theft or unauthorized network access.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share