Stack-Based Buffer Overflow in ZyXEL Wireless N300 Router
CVE-2014-0355

Currently unrated

Key Information:

Vendor: Zyxel
Status: N300 Netusb Nbg-419n Firmware; N300 Netusb Nbg-419n
Vendor: CVE Published:; 15 April 2014

Summary

The ZyXEL Wireless N300 NetUSB NBG-419N router is prone to multiple stack-based buffer overflow vulnerabilities due to improper handling of user input. Attackers exploiting these vulnerabilities can execute arbitrary code on the device, potentially compromising its functionality. Key attack vectors include manipulated entries in weather data attributes and specific commands such as SET COUNTRY, among others. These vulnerabilities highlight the need for prompt firmware updates to safeguard against unauthorized remote access.

References

http://www.kb.cert.org/vuls/id/939260

third-party-advisoryx_refsource_CERT-VN

Timeline

Vulnerability published
Apr 15, 2014
Vulnerability Reserved
Dec 5, 2013