CVE

Id
31645  
CVE No.
CVE-2008-1528  
Status
Candidate  
Description
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) through 3.40(AHQ.3), allow remote authenticated users to obtain authentication data by making direct HTTP requests and then reading the HTML source, as demonstrated by a request for (1) RemMagSNMP.html, which discloses SNMP communities; or (2) WLAN.html, which discloses WEP keys.  
Phase
Assigned (20080325)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
340020 31645 CVE-2008-1528 BUGTRAQ:20080301 The Router Hacking Challenge is Over!  View
340021 31645 CVE-2008-1528 URL:http://www.securityfocus.com/archive/1/archive/1/489009/100/0/threaded  View
340022 31645 CVE-2008-1528 MISC:http://www.gnucitizen.org/projects/router-hacking-challenge/  View
340023 31645 CVE-2008-1528 MISC:http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf  View
340024 31645 CVE-2008-1528 XF:zyxelprestige-snmp-wep-info-disclosure(41511)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
48961 JVNDB-2008-004271 Perlbal におけるサービス運用妨害 (DoS) の脆弱性 Perlbal には、バッファのアップロードが有効になっている際、サービス運用妨害 (クラッシュ) 状態となる脆弱性が存在します。 CVE-2008-1532 31645 5 http://jvndb.jvn.jp/ja/contents/2008/JVNDB-2008-004271.html  View