CVE DATABASE / CVE-2001-1484
CVE-2001-1484
CVSS 7.5 · HIGH
Summary
Alcatel ADSL modems allow remote attackers to access the Trivial File Transfer Protocol (TFTP) to modify firmware and configuration via a bounce attack from a system on the local area network (LAN) side, which is allowed to access TFTP without authentication.
CVSS 2.0 breakdown
| Base score | 7.5 (HIGH) |
| Vector | AV:N/AC:L/Au:N/C:P/I:P/A:P |
| Attack vector | NETWORK |
| Attack complexity | LOW |
| Confidentiality | PARTIAL |
| Integrity | PARTIAL |
| Availability | PARTIAL |
Affected products
Alcatel adsl modem 1000Alcatel speed touch adsl modem
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://www.cert.org/advisories/CA-2001-08.html
- http://www.kb.cert.org/vuls/id/211736
- https://exchange.xforce.ibmcloud.com/vulnerabilities/6336
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.