CVE-2004-1540

ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file.
Configurations

Configuration 1 (hide)

OR cpe:2.3:h:zyxel:prestige:645r_a1:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:prestige:650h:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:prestige:650hw:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:prestige:650hw_31:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:prestige:650r:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zynos:3.40:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zynos:is.3:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:zynos:is.5:*:*:*:*:*:*:*

History

20 Nov 2024, 23:51

Type Values Removed Values Added
References () http://marc.info/?l=bugtraq&m=110116413414615&w=2 - () http://marc.info/?l=bugtraq&m=110116413414615&w=2 -
References () http://marc.info/?l=bugtraq&m=110135136811344&w=2 - () http://marc.info/?l=bugtraq&m=110135136811344&w=2 -
References () http://secunia.com/advisories/13278 - Vendor Advisory () http://secunia.com/advisories/13278 - Vendor Advisory
References () http://securitytracker.com/id?1012298 - Exploit () http://securitytracker.com/id?1012298 - Exploit
References () http://www.osvdb.org/12108 - () http://www.osvdb.org/12108 -
References () http://www.securityfocus.com/bid/11723 - Exploit () http://www.securityfocus.com/bid/11723 - Exploit
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/18202 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/18202 -

Information

Published : 2004-12-31 05:00

Updated : 2024-11-20 23:51


NVD link : CVE-2004-1540

Mitre link : CVE-2004-1540

CVE.ORG link : CVE-2004-1540


JSON object : View

Products Affected

zyxel

  • prestige
  • zynos