What is the severity of CVE-2006-0946?

CVE-2006-0946 is classified as a high-severity cross-site scripting (XSS) vulnerability.

How does CVE-2006-0946 affect Thomson SpeedTouch modems?

CVE-2006-0946 allows remote attackers to inject arbitrary web script or HTML into the LocalNetwork page of affected Thomson SpeedTouch modems.

Which versions of Thomson SpeedTouch are affected by CVE-2006-0946?

CVE-2006-0946 impacts Thomson SpeedTouch modems running firmware version 5.3.2.6.0, including models 516, 530, 536, 546, 576, 580, and 585.

How can CVE-2006-0946 be mitigated?

To mitigate CVE-2006-0946, it is recommended to upgrade the firmware of affected Thomson SpeedTouch modems to a fixed version that addresses the XSS vulnerability.

Are there any workarounds for CVE-2006-0946?

Temporary workarounds for CVE-2006-0946 may include limiting access to the LocalNetwork page and disabling remote management features.

Vulnerability/
CVE-2006-0946

medium

4.3

CWE

NVD-CWE-Other 79

1/3/2006

7/8/2024

CVE-2006-0946: XSS

First published: Wed Mar 01 2006(Updated: )

Cross-site scripting (XSS) vulnerability in Thomson SpeedTouch modems running firmware 5.3.2.6.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter to the LocalNetwork page.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Thomson SpeedTouch USB Driver	=546_5.3.2.6.0
Thomson SpeedTouch USB Driver	=580_5.3.2.6.0
Thomson SpeedTouch USB Driver	=585_5.3.2.6.0
Thomson SpeedTouch USB Driver	=530_5.3.2.6.0
Thomson SpeedTouch USB Driver	=536_5.3.2.6.0
Thomson SpeedTouch USB Driver	=576_5.3.2.6.0
Thomson SpeedTouch USB Driver	=516_5.3.2.6.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-0946?
CVE-2006-0946 is classified as a high-severity cross-site scripting (XSS) vulnerability.
How does CVE-2006-0946 affect Thomson SpeedTouch modems?
CVE-2006-0946 allows remote attackers to inject arbitrary web script or HTML into the LocalNetwork page of affected Thomson SpeedTouch modems.
Which versions of Thomson SpeedTouch are affected by CVE-2006-0946?
CVE-2006-0946 impacts Thomson SpeedTouch modems running firmware version 5.3.2.6.0, including models 516, 530, 536, 546, 576, 580, and 585.
How can CVE-2006-0946 be mitigated?
To mitigate CVE-2006-0946, it is recommended to upgrade the firmware of affected Thomson SpeedTouch modems to a fixed version that addresses the XSS vulnerability.
Are there any workarounds for CVE-2006-0946?
Temporary workarounds for CVE-2006-0946 may include limiting access to the LocalNetwork page and disabling remote management features.

agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/weakness
agent/severity
agent/references
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/thomson
canonical/thomson speedtouch usb driver
version/thomson speedtouch usb driver/546_5.3.2.6.0
version/thomson speedtouch usb driver/580_5.3.2.6.0
version/thomson speedtouch usb driver/585_5.3.2.6.0
version/thomson speedtouch usb driver/530_5.3.2.6.0
version/thomson speedtouch usb driver/536_5.3.2.6.0
version/thomson speedtouch usb driver/576_5.3.2.6.0
version/thomson speedtouch usb driver/516_5.3.2.6.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.