Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1160

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-1160
Last Modified 31 Mar 2011 12:00:00
Published 24 Mar 2008 08:44:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-1160

Summary

ZyXEL ZyWALL 1050 has a hard-coded password for the Quagga and Zebra processes that is not changed when it is set by a user, which allows remote attackers to gain privileges.

Vulnerable Systems

Application

  • Zyxel Zywall 1050


References

XF - zywall-quagga-zebra-default-password(41424)

VUPEN - ADV-2008-0990

BID - 28184

MISC - http://www.secumania.org/exploits/remote/zyxel-zywall-quagga_zebra-(default-pass)-remote-root-vulnerability-2008032143791/

MILW0RM - 5289

SECUNIA - 29237

MISC - http://packetstormsecurity.org/0803-exploits/ZyWALL.pdf


Last Updated: 27 May 2016 10:47:02