Details of VAR-E-200411-0103

ID

VAR-E-200411-0103

CVE

cve_id:

CVE-2004-1540

Trust: 1.6

sources: EXPLOIT-DB: 24760 // EDBNET: 46842

EDB ID

24760

TITLE

ZYXEL 3 Prestige Router - HTTP Remote Administration Configuration Reset - Hardware remote Exploit

Trust: 0.6

sources: EXPLOIT-DB: 24760

DESCRIPTION

ZYXEL 3 Prestige Router - HTTP Remote Administration Configuration Reset. CVE-2004-1540CVE-12108 . remote exploit for Hardware platform

Trust: 0.6

sources: EXPLOIT-DB: 24760

AFFECTED PRODUCTS

vendor:	zyxel	model:	prestige router	scope:	eq	version:	3	Trust: 1.0
vendor:	zyxel	model:	zynos	scope:	eq	version:	3.40	Trust: 0.3
vendor:	zyxel	model:	zynos v3.40	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	zynos is.5	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	zynos is.3	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 650r	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 650hw-31	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 650hw	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 650h	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 645r-a1	scope:	-	version:	-	Trust: 0.3
vendor:	zyxel	model:	prestige 782r	scope:	ne	version:	-	Trust: 0.3

sources: BID: 11723 // EXPLOIT-DB: 24760

EXPLOIT

source: https://www.securityfocus.com/bid/11723/info

ZyXEL Prestige router series is reported prone to an access validation vulnerability. The vulnerability exists because the firmware of the router fails to restrict access to a configuration page that is a part of the ZyXEL Prestige HTTP based remote administration service.

A remote attacker may exploit this vulnerability to reset the configuration of the router.

http://www.example.com/rpFWUpload.html

Trust: 1.0

sources: EXPLOIT-DB: 24760

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 24760

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 24760

TYPE

HTTP Remote Administration Configuration Reset

Trust: 1.0

sources: EXPLOIT-DB: 24760

CREDITS

Francisco Canela

Trust: 0.6

sources: EXPLOIT-DB: 24760

EXTERNAL IDS

db:	BID	id:	11723	Trust: 1.9
db:	NVD	id:	CVE-2004-1540	Trust: 1.6
db:	EXPLOIT-DB	id:	24760	Trust: 1.6
db:	EDBNET	id:	46842	Trust: 0.6

sources: BID: 11723 // EXPLOIT-DB: 24760 // EDBNET: 46842

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2004-1540	Trust: 1.6
url:	https://www.securityfocus.com/bid/11723/info	Trust: 1.0
url:	https://www.exploit-db.com/exploits/24760/	Trust: 0.6
url:	http://www.zyxel.com/	Trust: 0.3

sources: BID: 11723 // EXPLOIT-DB: 24760 // EDBNET: 46842

SOURCES

db:	BID	id:	11723
db:	EXPLOIT-DB	id:	24760
db:	EDBNET	id:	46842

LAST UPDATE DATE

2022-07-27T09:29:07.366000+00:00

SOURCES UPDATE DATE

db:

BID

id:

11723

date:

2004-11-22T00:00:00

SOURCES RELEASE DATE

db:	BID	id:	11723	date:	2004-11-22T00:00:00
db:	EXPLOIT-DB	id:	24760	date:	2004-11-22T00:00:00
db:	EDBNET	id:	46842	date:	2004-11-22T00:00:00