SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  Zyxel P660HN-T1A V1 Command Injection

Category: IoT-ATTACKS      

The ZyXEL P660HN-T1A v1 TCLinux Fw $7.3.15.0 v001 / 3.40(ULM.0)b31 router distributed by TrueOnline has a command injection vulnerability in the Remote System Log forwarding function, which is accessible by an unauthenticated user. The vulnerability is in the ViewLog.asp page and can be exploited through the remote_host parameter.

References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-18368


Relevant Information