CVE-2020-25014

A stack-based buffer overflow in fbwificontinue.cgi on Zyxel UTM and VPN series of gateways running firmware version V4.30 through to V4.55 allows remote unauthenticated attackers to execute arbitrary code via a crafted http packet...

ZyXEL Gateways Vulnerability Research: http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf

This paper is the result of various security assessments performed on several ZyXEL Prestige devices in both, a controlled environment computer lab and production environments during several penetration tests. There are two types of attacks featured in this paper which we believe might be...