TrueOnline.ZyXEL.P660HN.V1.Unauthenticated.Command.Injection
Description
This indicates an attack attempt against a Code Injection vulnerability in ZyXEL P660HN-T router.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted HTTP request. A remote attacker may be able to exploit this to execute arbitrary code on the affected systems.
Outbreak Alert
A command injection vulnerability (Zyxel P660HN-T1A v1) in the Remote System Log forwarder function of firmware version 3.40 (ULM.0) b3 could allow a remote unauthenticated attacker to execute some OS commands by sending a crafted HTTP request.
Affected Products
ZyXEL P660HN-T v1
Impact
System Compromise: Remote attacker can gain control of vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |