CVE-2004-1540 - OpenCVE

ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:L/Au:N/C:N/I:P/A:N

Vendors & Products
CPE Configurations

Vendors	Products
Zyxel	Zynos Prestige

Configuration 1 [-]

OR	cpe:2.3:h:zyxel:prestige:645r_a1:::::::*
	cpe:2.3:h:zyxel:prestige:650h:::::::*
	cpe:2.3:h:zyxel:prestige:650hw:::::::*
	cpe:2.3:h:zyxel:prestige:650hw_31:::::::*
	cpe:2.3:h:zyxel:prestige:650r:::::::*
	cpe:2.3:h:zyxel:zynos:3.40:::::::*
	cpe:2.3:h:zyxel:zynos:is.3:::::::*
	cpe:2.3:h:zyxel:zynos:is.5:::::::*

References

Link	Resource
http://marc.info/?l=bugtraq&m=110116413414615&w=2
http://marc.info/?l=bugtraq&m=110135136811344&w=2
http://secunia.com/advisories/13278	Vendor Advisory
http://securitytracker.com/id?1012298	Exploit
http://www.osvdb.org/12108
http://www.securityfocus.com/bid/11723	Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/18202

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2005-02-19T05:00:00

Updated: 2017-07-10T14:57:01

Reserved: 2005-02-18T00:00:00

Link: CVE-2004-1540

JSON object: View

NVD Information

Status : Modified

Published: 2004-12-31T05:00:00.000

Modified: 2017-07-11T01:31:07.340

Link: CVE-2004-1540

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-11-21T00:00:00", "descriptions": [{"lang": "en", "value": "ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20041121 Router ZyXEL Prestige 650 HW http remote admin.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=110116413414615&w=2"}, {"name": "12108", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/12108"}, {"name": "11723", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/11723"}, {"name": "13278", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/13278"}, {"name": "zyxel-configuration-reset(18202)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18202"}, {"name": "20041124 Re: Router ZyXEL Prestige 650 HW http remote admin.", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=110135136811344&w=2"}, {"name": "1012298", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1012298"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-1540", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20041121 Router ZyXEL Prestige 650 HW http remote admin.", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=110116413414615&w=2"}, {"name": "12108", "refsource": "OSVDB", "url": "http://www.osvdb.org/12108"}, {"name": "11723", "refsource": "BID", "url": "http://www.securityfocus.com/bid/11723"}, {"name": "13278", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/13278"}, {"name": "zyxel-configuration-reset(18202)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18202"}, {"name": "20041124 Re: Router ZyXEL Prestige 650 HW http remote admin.", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=110135136811344&w=2"}, {"name": "1012298", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1012298"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-1540", "datePublished": "2005-02-19T05:00:00", "dateReserved": "2005-02-18T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:prestige:645r_a1:*:*:*:*:*:*:*", "matchCriteriaId": "94155FF1-C619-44EC-BB8B-996ED208F232", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:prestige:650h:*:*:*:*:*:*:*", "matchCriteriaId": "0076DE97-2852-447F-93C0-A77A85CDF818", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:prestige:650hw:*:*:*:*:*:*:*", "matchCriteriaId": "9ED567D3-972F-4F4A-A058-E9653064AEFD", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:prestige:650hw_31:*:*:*:*:*:*:*", "matchCriteriaId": "10E80C0C-2418-4A74-8A63-03156E12F44E", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:prestige:650r:*:*:*:*:*:*:*", "matchCriteriaId": "54DADC5A-75B4-4277-9AD3-0A24C8DE4A35", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:zynos:3.40:*:*:*:*:*:*:*", "matchCriteriaId": "988E40DE-A52E-418C-B4E5-F3C5012FFB62", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:zynos:is.3:*:*:*:*:*:*:*", "matchCriteriaId": "FCB28E97-F600-4CC7-8924-92605341DE96", "vulnerable": true}, {"criteria": "cpe:2.3:h:zyxel:zynos:is.5:*:*:*:*:*:*:*", "matchCriteriaId": "05E404A5-B514-4614-BA01-9CE9136CB13D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "ZyXEL Prestige 623, 650, and 652 HW Routers, and possibly other versions, with HTTP Remote Administration enabled, does not require a password to access rpFWUpload.html, which allows remote attackers to reset the router configuration file."}], "id": "CVE-2004-1540", "lastModified": "2017-07-11T01:31:07.340", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-12-31T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=110116413414615&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=110135136811344&w=2"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/13278"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://securitytracker.com/id?1012298"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/12108"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/11723"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18202"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}