CVE-2008-1528

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) through 3.40(AHQ.3), allow remote authenticated users to obtain authentication data by making direct HTTP requests and then reading the HTML source, as demonstrated by a request for (1) RemMagSNMP.html, which discloses SNMP communities; or (2) WLAN.html, which discloses WEP keys.

Weakness

When an actor claims to have a given identity, the software does not prove or insufficiently proves that the claim is correct.

Affected Software

Name	Vendor	Start Version	End Version
Prestige_660	Zyxel	h-d1	h-d1
Prestige_660	Zyxel	h-d3	h-d3
Prestige_661	Zyxel	hw-d1	hw-d1
Zynos	Zyxel	3.40	3.40
Zynos	Zyxel	3.40	3.40
Zynos	Zyxel	3.40	3.40
Zynos	Zyxel	3.40	3.40
Zynos	Zyxel	3.40	3.40
Zynos	Zyxel	3.40	3.40

Potential Mitigations

https://cwe.mitre.org/data/definitions/114.html
https://cwe.mitre.org/data/definitions/115.html
https://cwe.mitre.org/data/definitions/151.html
https://cwe.mitre.org/data/definitions/194.html
https://cwe.mitre.org/data/definitions/22.html
https://cwe.mitre.org/data/definitions/57.html
https://cwe.mitre.org/data/definitions/593.html
https://cwe.mitre.org/data/definitions/633.html
https://cwe.mitre.org/data/definitions/650.html
https://cwe.mitre.org/data/definitions/94.html

References

http://www.gnucitizen.org/projects/router-hacking-challenge/
http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf
http://www.securityfocus.com/archive/1/489009/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/41511

NVD	https://nvd.nist.gov/vuln/detail/CVE-2008-1528
CWE	https://cwe.mitre.org/data/definitions/287.html

Improper Authentication

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References