CVE-2004-0680
First published: Tue Jul 13 2004(Updated: )
Zoom X3 ADSL modem has a terminal running on port 254 that can be accessed using the default HTML management password, even if the password has been changed for the HTTP interface, which could allow remote attackers to gain unauthorized access.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zoom Model 5560 X3 Ethernet Adsl Modem |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2004-0680?
CVE-2004-0680 is rated as a high severity vulnerability due to potential unauthorized access to the modem's terminal.
How do I fix CVE-2004-0680?
To fix CVE-2004-0680, the default HTML management password should be changed and network access to port 254 should be restricted.
What devices are affected by CVE-2004-0680?
CVE-2004-0680 primarily affects the Zoom Model 5560 X3 Ethernet ADSL Modem.
Can CVE-2004-0680 be exploited remotely?
Yes, CVE-2004-0680 can be exploited remotely by attackers if they are able to access port 254 using the default or compromised passwords.
Is there any patch available for CVE-2004-0680?
No specific patch is available for CVE-2004-0680; mitigation involves changing default settings and restricting access.
- collector/nvd-historical
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- vendor/zoom
- canonical/zoom model 5560 x3 ethernet adsl modem