Cross-site scripting (XSS) vulnerability in Thomson SpeedTouch modems running firmware 5.3.2.6.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter to the LocalNetwork page.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Speedtouch | Thomson | 546_5.3.2.6.0 | 546_5.3.2.6.0 |
Speedtouch | Thomson | 580_5.3.2.6.0 | 580_5.3.2.6.0 |
Speedtouch | Thomson | 585_5.3.2.6.0 | 585_5.3.2.6.0 |
Speedtouch | Thomson | 530_5.3.2.6.0 | 530_5.3.2.6.0 |
Speedtouch | Thomson | 536_5.3.2.6.0 | 536_5.3.2.6.0 |
Speedtouch | Thomson | 576_5.3.2.6.0 | 576_5.3.2.6.0 |
Speedtouch | Thomson | 516_5.3.2.6.0 | 516_5.3.2.6.0 |