The Allied Telesis AT-9000/24 Ethernet switch has a default password for its admin account, "manager," which allows remote attackers to perform unauthorized actions.
Max CVSS
7.5
EPSS Score
0.53%
Published
2006-12-23
Updated
2018-10-17
The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from unexpected locations.
Max CVSS
7.5
EPSS Score
1.57%
Published
2006-12-23
Updated
2018-10-17

CVE-2006-6184

Public exploit
Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long filename in a (1) GET or (2) PUT command.
Max CVSS
10.0
EPSS Score
59.68%
Published
2006-12-01
Updated
2018-10-17
The Allied Telesyn AT-9724TS switch allows remote attackers to cause a denial of service via a large amount of UDP data to the switch, which leads to unstable operation and possibly failure of the management interface or routing.
Max CVSS
5.0
EPSS Score
0.33%
Published
2006-04-26
Updated
2018-10-18
Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service.
Max CVSS
6.8
EPSS Score
0.18%
Published
2002-12-31
Updated
2008-09-05
Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.
Max CVSS
7.5
EPSS Score
0.37%
Published
2001-08-22
Updated
2017-12-19
6 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!