ZyXEL NBG-418N Router Insecure Default Password and Cross Site Request Forgery vulnerabilities

ZyXEL NBG-418N Router is prone to an insecure default password vulnerability and a cross-site request forgery vulnerability.

An attacker can exploit these issues to gain unauthorized access, allowing attackers to perform certain unauthorized actions or by tricking a victim into following a specially crafted HTTP request designed to perform some action on the attacker's behalf using a victim's currently active session.

ZyXEL NBG-418N Router running firmware version 1.00(AADZ.3)C0 is vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus