backupsettings.html in the web administrative portal in Zhone zNID GPON 2426A before S3.0.501 places a session key in a URL, which allows remote malicious users to obtain arbitrary user passwords via the sessionKey parameter in a getConfig action to backupsettings.conf.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dasanzhone znid_2426a_firmware |