Information Disclosure in Zyxel and Netgear Routers
CVE-2005-0328

Currently unrated

Key Information:

Vendor: Zyxel
Status: Prestige; Rt314; Rt311
Vendor: CVE Published:; 2 May 2005

Summary

Certain Zyxel and Netgear routers, including models P310, P314, P324, RT311, and RT314, exhibit a vulnerability that permits remote attackers to glean the IP address of the LAN-side interface. This occurs when an attacker pings a valid LAN IP address, which triggers an ARP reply that inadvertently reveals the mapping of the LAN IP address to the WAN MAC address. Such exposure can lead to potential exploitation and further attacks on the network. It is essential for users to review their firmware versions and apply necessary security measures.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/20609

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=110720465527599&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Feb 10, 2005