Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

ZyXEL ZyWALL Quagga/Zebra (default pass) Remote Root Vulnerability

🗓️ 22 Mar 2008 00:00:00Reported by RootType 
seebug
 seebug🔗 www.seebug.org👁 183 Views

ZyXEL ZyWALL Quagga/Zebra remote root vulnerability discovered by Pranav Joshi in March 2008. Default password 'zebra' allows unauthorized access to routing daemon on ports 2601, 2602, and 2604, potentially affecting ZyWALL 1050

Related
Code
ReporterTitlePublishedViews
Family
0day.today		ZyXEL ZyWALL Quagga/Zebra (default pass) Remote Root Vulnerability
21 Mar 200800:00
zdt
Circl		CVE-2008-1160
21 Mar 200800:00
circl
CVE		CVE-2008-1160
25 Mar 200800:00
cve
Cvelist		CVE-2008-1160
25 Mar 200800:00
cvelist
Exploit DB		ZYXEL ZyWALL Quagga/Zebra - 'Default Password' Remote Code Execution
21 Mar 200800:00
exploitdb
exploitpack		ZYXEL ZyWALL QuaggaZebra - Default Password Remote Code Execution
21 Mar 200800:00
exploitpack
NVD		CVE-2008-1160
25 Mar 200800:44
nvd
Prion		Hardcoded credentials
25 Mar 200800:44
prion
Positive Technologies		PT-2008-1001 · Zyxel +1 · Zywall Usg 300 +3
24 Mar 200800:00
ptsecurity
securityvulns		ZyXEL ZyWALL Quagga/Zebra Remote Root Vulnerability
22 Mar 200800:00
securityvulns
Rows per page

                                                Name: ZyXEL ZyWALL Quagga/Zebra Remote Root Vulnerability
Release Date: 10 March 2008
Discover: Pranav Joshi <[email protected]>
Vendor: ZyXEL
Products Affected: ZyWALL

(Status on other affected products & firmwares pending from vendor’s end)

 CVE-2008-1160

 BID 28184

---------------------------

Technical Details

---------------------------

The vulnerability in the Quagga/Zebra routing daemon, exists due to the 
fact that the appliance fails to change the password needed to login 
into the Quagga/Zebra daemon running on ports 2601, 2602 (Quagga/RIP) & 
2604 (Quagga/OSPF) /TCP, even though the password of the appliance has 
been changed an attacker can still use the default password ‘zebra’ to 
log into the Quagga/Zebra service to view and manipulate the routing 
information etc. of the appliance. 

The vulnerability was discovered on ZyWall 1050 appliance other versions 
could be affected as well. 

Information on other vulnerable products and firmwares is pending from 
the vendor’s end. 

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
22 Mar 2008 00:00Current
6.6Medium risk
Vulners AI Score6.6
EPSS0.16288
zyxelzywallquagga/zebraremote root vulnerabilitypranav joshidefault passwordunauthorized accessrouting daemonports 260126022604zywall 1050
183