Denial of Service Vulnerability in ZyXEL ZyWALL 10 Firewall
CVE-2002-0438

Currently unrated

Key Information:

Vendor: Zyxel
Status: Zywall10
Vendor: CVE Published:; 26 July 2002

Summary

The ZyXEL ZyWALL 10 firewall prior to version 3.50 is susceptible to a denial of service attack when it receives a specially crafted ARP packet containing its own IP address and an incorrect MAC address. This malicious input can lead to the firewall disabling its LAN interface, effectively disrupting network connectivity for users reliant on the device. Ensuring that firmware is updated to the latest version is essential for maintaining the integrity and availability of network services.

References

ftp://ftp.zyxel.com/public/zywall10/firmware/zywall10_V3....

x_refsource_MISC

http://www.iss.net/security_center/static/8436.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/4272

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jul 26, 2002
Vulnerability Reserved
Jun 7, 2002