ZyXEL Prestige Router Configuration Reset

Medium Nessus Plugin ID 15781


The remote host is a router with a web vulnerability that allows a remote attacker to reset its configuration to factory defaults.


The remote host is a ZyXEL router with a vulnerability in its web interface. With HTTP Remote Administration enabled, the page '/rpFWUpload.html' does not require authentication. This allows an attacker to reset the router's configuration to its factory state.


Contact ZyXEL for a patch.

See Also


Plugin Details

Severity: Medium

ID: 15781

File Name: zyxel_http_config_reset.nasl

Version: $Revision: 1.18 $

Type: remote

Family: Misc.

Published: 2004/11/22

Modified: 2016/11/15

Dependencies: 10107

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N

Temporal Vector: CVSS2#E:F/RL:ND/RC:ND

Vulnerability Information

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2004/11/21

Reference Information

CVE: CVE-2004-1540

BID: 11723

OSVDB: 12108

Secunia: 13278