ZyXEL Prestige Router Administration Interface Vulnerability

info
discussion
exploit
solution
references

ZyXEL Prestige Router Administration Interface Vulnerability

In the default factory configuration settings, Prestige routers have the administrative Telnet and FTP services available on the WAN interface. ZyXEL also uses a single common default administrator password.

On a Prestige router with the default password still set, any user can connect remotely and make configuration changes, firmware upgrades, and password changes.