ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) through 3.40(AHQ.3), support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote attackers to obtain access via a replay attack.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2008-03-26 10:44
Updated : 2024-02-28 11:21
NVD link : CVE-2008-1527
Mitre link : CVE-2008-1527
CVE.ORG link : CVE-2008-1527
JSON object : View
Products Affected
zyxel
- zynos
- prestige_661
- prestige_660
CWE
CWE-310
Cryptographic Issues