Information Disclosure Vulnerability in ZyXEL Prestige Routers
CVE-2008-1528

Currently unrated

Key Information:

Vendor: Zyxel
Status: Zynos; Prestige 661; Prestige 660
Vendor: CVE Published:; 26 March 2008

Summary

ZyXEL Prestige routers, including models P-660, P-661, and P-662, exhibit a vulnerability that allows remote authenticated users to retrieve sensitive authentication information through direct HTTP requests. By accessing specific pages, such as RemMagSNMP.html or WLAN.html, attackers can uncover critical data like SNMP community strings and WEP keys, which can compromise network security.

References

http://www.securityfocus.com/archive/1/489009/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.gnucitizen.org/projects/router-hacking-challenge/

x_refsource_MISC

http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf

x_refsource_MISC

Timeline

Vulnerability published
Mar 26, 2008
Vulnerability Reserved
Mar 25, 2008