CVE-2013-3588

Published: Apr 2, 2014Modified: May 6, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

The web management interface on Zyxel P660 devices allows remote attackers to cause a denial of service (reboot) via a flood of TCP SYN packets.

Affected (15)

Products: Zyxel: P 660h 61, P 660h 63, P 660h 67, P 660h D1, P 660h D3, P 660h T1, P 660h T3, P 660hw, P 660hw D1, P 660hw D3, P 660hw T3

11 products

Configuration A

15 vulnerable

Vulnerable Software	Affected Versions
Zyxel P 660h 61	All versions
Zyxel P 660h 63	All versions
Zyxel P 660h 67	All versions
Zyxel P 660h D1	All versions
Zyxel P 660h D3	All versions
Zyxel P 660h T1	All versions
Zyxel P 660h T1	Version v2
Zyxel P 660h T3	Version v2
Zyxel P 660hw	Version _t1
Zyxel P 660hw	Version _t1 v2
Zyxel P 660hw D1	All versions
Zyxel P 660hw D1	Version v2
Zyxel P 660hw D3	All versions
Zyxel P 660hw T3	All versions
Zyxel P 660hw T3	Version v2

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

http://www.kb.cert.org/vuls/id/893726

Source: cret@cert.org

US Government Resource

http://www.kb.cert.org/vuls/id/893726

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

Timeline

No history available yet.