CVE-2002-0949

Telindus 1100 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-0949. PoCs published by rubik.

AI-analyzed exploit summary This exploit targets a vulnerability in Telindus 10xx and 11xx series routers, where the router sends administrative passwords in plaintext via UDP. The PoC sends a crafted UDP packet to port 9833 and captures the response to extract the password.

Description

Telindus 1100 series ADSL router allows remote attackers to gain privileges to the device via a certain packet to UDP port 9833, which generates a reply that includes the router's password and other sensitive information in cleartext.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rubik · cremotehardware

https://www.exploit-db.com/exploits/21513

View Code ZIP pw:eip

This exploit targets a vulnerability in Telindus 10xx and 11xx series routers, where the router sends administrative passwords in plaintext via UDP. The PoC sends a crafted UDP packet to port 9833 and captures the response to extract the password.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Telindus 10xx and 11xx series routers (firmware versions prior to 6.0.27)

No auth needed

Prerequisites: Network access to the target router · UDP port 9833 accessible

MITRE ATT&CK

T1552.001 - Credentials In Files

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/4946

Patch, Vendor Advisory vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/9277.php

Third Party Advisory mailing-list x_refsource_bugtraq

http://archives.neohapsis.com/archives/bugtraq/2002-06/0028.html

Scores

EPSS 0.0288

EPSS Percentile 85.1%

Details

Status published

Products (2)

telindus/adsl_router 1110

telindus/adsl_router 1120

Published Oct 04, 2002

Tracked Since Feb 18, 2026