Tag Archives: cwmp
#Phreaking2016: Authentication Flaw in O2 (Telefónica) ACS
Today, the details on a major authentication flaw in the Auto Configuration Server (ACS) of the German ISP O2 (Telefónica) were released. A tl;dr could be “Tell me your IPv4 address and I may place and accept phone calls on your behalf!”. … Continue reading