CVE-2008-6916

Siemens Speedstream 5200 - Authentication Bypass

Title source: rule

Description

Siemens SpeedStream 5200 with NetPort Software 1.1 allows remote attackers to bypass authentication via an invalid Host header, possibly involving a trailing dot in the hostname.

Exploits (1)

exploitdb WORKING POC VERIFIED

by hkm · textremotehardware

https://www.exploit-db.com/exploits/7055

View Code ZIP pw:eip

References (5)

[Vendor Advisory] http://secunia.com/advisories/32635

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/46508

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/32203

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7055

[Third Party Advisory, VDB Entry] http://osvdb.org/49870

Scores

EPSS 0.0460

EPSS Percentile 89.1%

Classification

CWE

CWE-287

Status draft

Affected Products (2)

siemens/speedstream_5200

john_doe/netport_software

Timeline

Published Aug 07, 2009

Tracked Since Feb 18, 2026