Zyxel/Eir D1000 DSL Modem NewNTPServer Command Injection Over TR-064

Posted by deepcore on January 5, 2017 – 12:08 pm

Broadband DSL modems manufactured by Zyxel and distributed by some European ISPs are vulnerable to a command injection vulnerability when setting the ‘NewNTPServer’ value using the TR-64 SOAP-based configuration protocol. In the tested case, no authentication is required to set this value on affected DSL modems. This exploit was originally tested on firmware versions up to 2.00(AADU.5)_20150909.

This post is under “exploit” and has no respond so far.
If you enjoy this article, make sure you subscribe to my RSS Feed.

Post a reply

You must be logged in to post a comment.

« PDFAdd 1.2 DLL Hijacking WordPress Stop User Enumeration 1.3.4 User Enumeration »

:: Deepquest ::

This site contains information which could be considered illegal in some countries. It is provided here for educational use only and is not intended to be used for illegal activities.

Zyxel/Eir D1000 DSL Modem NewNTPServer Command Injection Over TR-064

Post a reply

Tabs Switcher

Categories

Archives

Meta

BLOGROLL