ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) up to and including 3.40(AHQ.3), support authentication over HTTP via a hash string in the hiddenPassword field, which allows remote malicious users to obtain access via a replay attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zyxel prestige 660 h-d1 |
||
zyxel prestige 660 h-d3 |
||
zyxel zynos 3.40 |
||
zyxel prestige 661 hw-d1 |