40 matches found
EUVD-2014-4086
Malware in sbrugna...
Improper access control
ZTE ZXV10 W300 router with firmware W300V1.0.0aZRDLK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0...
CVE-2014-4019
ZTE ZXV10 W300 router with firmware W300V1.0.0aZRDLK stores sensitive information under the web root with insufficient access control, which allows remote attackers to read backup files via a direct request for rom-0...
ZTE ADSL ZXV10 W300 Password Interception Vulnerability
The ZTE ADSL ZXV10 W300 is an ADSL modem Modem product from China's ZTE Corporation ZTE. A security vulnerability exists in the ZTE ADSL ZXV10 W300 W300V2.1.0fER7PEO57 version and W300V2.1.0hER7PEO57 version. A remote attacker can exploit this vulnerability to change the administrator password by...
ZTE ADSL ZXV10 W300 Information Disclosure Vulnerability
The ZTE ADSL ZXV10 W300 is an ADSL modem Modem product from China's ZTE Corporation ZTE. A security vulnerability exists in ZTE ADSL ZXV10 W300 W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57. A remote attacker can exploit the vulnerability by logging into the target account with the help of arbitrar...
Default credentials
ZTE ADSL ZXV10 W300 modems W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57 allow user accounts to have multiple valid username and password pairs, which allows remote authenticated users to login to a target account via any of its username and password pairs...
Design/Logic Flaw
ZTE ZXHN H108N R1A devices before ZTE.bhs.ZXHNH108NR1A.kPE and ZXV10 W300 devices W300V1.0.0fER1PE allow remote authenticated users to bypass intended access restrictions, and discover credentials and keys, by reading the configuration file, a different vulnerability than CVE-2015-7248...
CVE-2015-8703
CVE-2015-8703 affects ZTE ZXHN H108N R1A (before ZXHNH108NR1A.k_PE) and ZXV10 W300 (W300V1.0.0f_ER1_PE). Root cause: remote authenticated users can read the device configuration file to bypass access restrictions and discover credentials and keys. Impact: information disclosure (credentials/keys)...
ZTE ZXHN H108N R1A devices information disclosure vulnerability
The ZTE ZXHN H108N R1A is a wireless router product from China's ZTE Corporation. An information disclosure vulnerability exists in the ZTE ZXHN H108N R1A ZTE.bhs.ZXHNH108NR1A.hPE version and the ZXV10 W300 W300V1.0.0fER1PE. Allows remote attackers to bypass predetermined access rights and discov...
ZTE ZXHN H108N R1A, ZXV10 W300 Routers - Multiple Vulnerabilities
Exploit for hardware platform in category web applications Exploit Title: ZTE ZXHN H108N R1A + ZXV10 W300 routers - multiple vulnerabilities Discovered by: Karn Ganeshen CERT VU 391604 Vendor Homepage: www.zte.com.cn Versions Reported ZTE ZXHN H108N R1A - Software version ZTE.bhs.ZXHNH108NR1A ZTE...
ZTE ADSL ZXV10 W300 Modems - Multiple Vulnerabilities
Exploit Title: ZTE ADSL ZXV10 W300 modems - Multiple vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.zte.com.cn Versions Reported: W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57 CVE-ID: CVE-2015-7257 CVE-2015-7258 CVE-2015-7259 Note: Large deployment size, primarily in Peru, used b...
ZTE ADSL ZXV10 W300 Authorization / Disclosure / Backdoor
Exploit Title: ZTE ADSL ZXV10 W300 modems - Multiple vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.zte.com.cn Versions Reported: W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57 CVE-ID: CVE-2015-7257 CVE-2015-7258 CVE-2015-7259 Note: Large deployment size, primarily in Peru, used b...
ZTE ZXHN H108N R1A / ZXV10 W300 Traversal / Disclosure / Authorization
Exploit Title: ZTE ZXHN H108N R1A + ZXV10 W300 routers - multiple vulnerabilities Discovered by: Karn Ganeshen CERT VU 391604 Vendor Homepage: www.zte.com.cn Versions Reported ZTE ZXHN H108N R1A - Software version ZTE.bhs.ZXHNH108NR1A ZTE ZXV10 W300 - Software version - w300v1.0.0fER1PE Overview...
ZTE ADSL ZXV10 W300 Modems - Multiple Vulnerabilities
ZTE ADSL ZXV10 W300 Modems - Multiple Vulnerabilities Exploit Title: ZTE ADSL ZXV10 W300 modems - Multiple vulnerabilities Discovered by: Karn Ganeshen Vendor Homepage: www.zte.com.cn Versions Reported: W300V2.1.0fER7PEO57 and W300V2.1.0hER7PEO57 CVE-ID: CVE-2015-7257 CVE-2015-7258 CVE-2015-7259...
ZTE ZXHN H108N R1A ZXV10 W300 Routers - Multiple Vulnerabilities
ZTE ZXHN H108N R1A ZXV10 W300 Routers - Multiple Vulnerabilities Exploit Title: ZTE ZXHN H108N R1A + ZXV10 W300 routers - multiple vulnerabilities Discovered by: Karn Ganeshen CERT VU 391604 Vendor Homepage: www.zte.com.cn Versions Reported ZTE ZXHN H108N R1A - Software version ZTE.bhs.ZXHNH108NR...
ZTE ZXHN H108N R1A Information Disclosure Vulnerability
The ZTE ZXHN H108N R1A is a wireless router product from China's ZTE Corporation. An information disclosure vulnerability exists in the ZTE ZXHN H108N R1A ZTE.bhs.ZXHNH108NR1A.hPE version and the ZXV10 W300 W300V1.0.0fER1PE, which allows remote attackers to exploit the vulnerability to obtain a...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Delete Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1522 Release Date: ============= 2015-06-16 Vulnerability Laboratory ID VL-ID: ===================================...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Delete
ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Delete Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Delete Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1522 Release Date: ============= 2015-06-16 Vulnerability Laboratory...
ZTE ZXV10 W300 3.1.0c_DR0 UI Session Delete
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Delete Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1522 Release Date: ============= 2015-06-16 Vulnerability Laboratory ID VL-ID: ===================================...
ZTE ZXV10 W300 v3.1.0c_DR0 - UI Session Vulnerability
Document Title: =============== ZTE ZXV10 W300 v3.1.0cDR0 - UI Session Vulnerability References: =========== http://www.vulnerability-lab.com/getcontent.php?id=1523 Video View: https://www.youtube.com/watch?v=sdSzTguFjY0 Advisory: http://www.vulnerability-lab.com/getcontent.php?id=1522 Release...