Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3725

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2005-3725
Last Modified 05 Sep 2008 04:55:07
Published 21 Nov 2005 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3725

Summary

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 uses hardcoded IP addresses for its DNS servers, which could allow remote attackers to cause a denial of service or hijack Zyxel phones by attacking or spoofing the hardcoded DNS servers. NOTE: it could be argued that this issue reflects an inherent limitation of DNS itself, so perhaps it should not be included in CVE.

Vulnerable Systems


References

BID - 15478

FULLDISC - 20051116 Zyxel P2000W (Version1) VoIP Wifi phone multiple


Last Updated: 27 May 2016 10:41:02