[oclug] Alcatel DSL Modems
Hugh Campbell, Finlayson & Singlehurst
hdc at fs.ca
Tue Apr 10 05:31:45 EDT 2001
On Tue, 10 Apr 2001 06:44:51 -0600 (MDT), John E Pearson
>You folks might be interested in the attached.
>>Subject: multiple vulnerabilities in Alcatel ADSL-Ethernet
>>Researchers associated with the San Diego
Supercomputer Center at the
>>University of California, San Diego have identified multiple
>>implementation flaws in the Alcatel Speed Touch ADSL
>>an ADSL-Ethernet router/bridge). These flaws can allow
an intruder to
OK, you definitely got my attention with that posting.
Thanks very much for posting that - I don't believe I ever
would have seen it otherwise. I HAVE a Speed Touch Home
in use for our office Internet connection.
So the question then becomes, what are the ramifications of
someone breaking into my modem. If they render it
unusable, then I can presumably press the default pin on the
back. If they render it useless (ie unresettable), I guess I
scream at my ISP.
As a practical matter however, what are the more subtle
security implications for me, if someone accesses it in a covert
fashion? We only use the modem to communicate out to the
Internet - no servers are run from our office, though there is an
Internal Web server and Netbios server.
More information about the OCLUG