AlliedtelesynCVEs & Vulnerabilities

6 CVEs affecting Alliedtelesyn products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.

Most Affected Products

at-9000 24 ethernetswitch 2at-8024 1at-9724ts 1at-ar220e 1at-tftp 1rapier 24 1
CVE-2006-6717HIGH

The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from unexpected locations.

23 Dec 2006
7.5
CVSS
CVE-2006-6718HIGH

The Allied Telesis AT-9000/24 Ethernet switch has a default password for its admin account, "manager," which allows remote attackers to perform unauthorized actions.

23 Dec 2006
7.5
CVSS
CVE-2006-6184CRITICALpoc

Multiple stack-based buffer overflows in Allied Telesyn TFTP Server (AT-TFTP) 1.9, and possibly earlier, allow remote attackers to cause a denial of service (crash) or execute arbitrary code via a long filename in a (1) GET or (2) PUT command.

1 Dec 2006
10.0
CVSS
CVE-2006-2030MEDIUM

The Allied Telesyn AT-9724TS switch allows remote attackers to cause a denial of service via a large amount of UDP data to the switch, which leads to unstable operation and possibly failure of the management interface or routing.

26 Apr 2006
5.0
CVSS
CVE-2002-2415MEDIUM

Allied Telesyn AT-8024 1.3.1 and Rapier 24 switches allow remote authenticated users to cause a denial of service in the management interface via a stream of zero (null) bytes sent via UDP to a running service.

31 Dec 2002
6.8
CVSS
CVE-2001-0617HIGH

Allied Telesyn AT-AR220e cable/DSL router firmware 1.08a RC14 with the portmapper and the 'Virtual Server' enabled can allow a remote attacker to gain access to mapped services even though the single portmappings may be disabled.

22 Aug 2001
7.5
CVSS
← PrevPage 1 / 1Next →