Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2008-1523

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) through 3.40(AHQ.3), allow remote authenticated users to obtain ISP and Dynamic DNS credentials by sending a direct request for (1) WAN.html, (2) wzPPPOE.html, and (3) rpDyDNS.html, and then reading the HTML source.

  • Published: Mar 26, 2008
  • Updated: Apr 13, 2023
  • CVE: CVE-2008-1523
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:P/I:N/A:N

CWEs:

Software From Fixed in
zyxel / zynos 3.40-ahq.0 3.40-ahq.0.x
zyxel / zynos 3.40-agl.3 3.40-agl.3.x
zyxel / zynos 3.40-ahq.3 3.40-ahq.3.x
zyxel / zynos 3.40-ahz.0 3.40-ahz.0.x
zyxel / prestige_661 hw-d1 hw-d1.x
zyxel / prestige_660 h-d3 h-d3.x
zyxel / zynos 3.40-atm.0 3.40-atm.0.x
zyxel / prestige_660 h-d1 h-d1.x
zyxel / zynos 3.40-agd.2 3.40-agd.2.x