← Back

CVE-2008-1523

nvd nist
Published: Mar 26, 2008Modified: Apr 23, 2026

JSON object

Loading...
5.0
Vector
AV:N/AC:L/Au:N/C:P/I:N/A:N
Exploitability: 10.0 / Impact: 2.9
Source: NVD

Description

ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(AGD.2) through 3.40(AHQ.3), allow remote authenticated users to obtain ISP and Dynamic DNS credentials by sending a direct request for (1) WAN.html, (2) wzPPPOE.html, and (3) rpDyDNS.html, and then reading the HTML source.

Affected (9)

Zyxel
3 products
Prestige 660
Prestige 661
Zynos
Configuration A
9 vulnerable
Vulnerable SoftwareAffected Versions
Zyxel
Prestige 660
Version h-d1
Prestige 660
Version h-d3
Prestige 661
Version hw-d1
Zyxel
Zynos
Version 3.40 agd.2
Zynos
Version 3.40 agl.3
Zynos
Version 3.40 ahq.0
Zynos
Version 3.40 ahq.3
Zynos
Version 3.40 ahz.0
Zynos
Version 3.40 atm.0

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (8)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.