CVE-2008-1526
 
Severity Score
7.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
ZyXEL Prestige routers, including P-660, P-661, and P-662 models with firmware 3.40(PE9) and 3.40(AGD.2) through 3.40(AHQ.3), do not use a salt when calculating an MD5 password hash, which makes it easier for attackers to crack passwords.
Los routers ZyXEL Prestige, incluyendo los modelos P-660, P-661 y P-662 con firmware 3.40(PE9) y 3.40(AGD.2) hasta la 3.40(AHQ.3), no utilizan salt cuando se calcula el hash de una contraseña MD5, lo cual facilita a los atacantes craquear contraseñas.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2008-03-25 CVE Reserved
- 2008-03-26 CVE Published
- 2024-08-07 CVE Updated
- 2024-08-28 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-916: Use of Password Hash With Insufficient Computational Effort
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
http://www.gnucitizen.org/projects/router-hacking-challenge | Broken Link | |
http://www.procheckup.com/Hacking_ZyXEL_Gateways.pdf | Broken Link | |
http://www.securityfocus.com/archive/1/489009/100/0/threaded | Broken Link |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Zyxel Search vendor "Zyxel" | P-663hn-51 Firmware Search vendor "Zyxel" for product "P-663hn-51 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-663hn-51 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-663hn-51 Search vendor "Zyxel" for product "P-663hn-51" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-663hn-51 Firmware Search vendor "Zyxel" for product "P-663hn-51 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-663hn-51 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-663hn-51 Search vendor "Zyxel" for product "P-663hn-51" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-61 Firmware Search vendor "Zyxel" for product "P-660h-61 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-61 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-61 Search vendor "Zyxel" for product "P-660h-61" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-61 Firmware Search vendor "Zyxel" for product "P-660h-61 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-61 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-61 Search vendor "Zyxel" for product "P-660h-61" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-63 Firmware Search vendor "Zyxel" for product "P-660h-63 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-63 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-63 Search vendor "Zyxel" for product "P-660h-63" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-63 Firmware Search vendor "Zyxel" for product "P-660h-63 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-63 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-63 Search vendor "Zyxel" for product "P-660h-63" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-67 Firmware Search vendor "Zyxel" for product "P-660h-67 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-67 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-67 Search vendor "Zyxel" for product "P-660h-67" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-67 Firmware Search vendor "Zyxel" for product "P-660h-67 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-67 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-67 Search vendor "Zyxel" for product "P-660h-67" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-d1 Firmware Search vendor "Zyxel" for product "P-660h-d1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-d1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-d1 Search vendor "Zyxel" for product "P-660h-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-d1 Firmware Search vendor "Zyxel" for product "P-660h-d1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-d1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-d1 Search vendor "Zyxel" for product "P-660h-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-d3 Firmware Search vendor "Zyxel" for product "P-660h-d3 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-d3 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-d3 Search vendor "Zyxel" for product "P-660h-d3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-d3 Firmware Search vendor "Zyxel" for product "P-660h-d3 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-d3 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-d3 Search vendor "Zyxel" for product "P-660h-d3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hn-51 Firmware Search vendor "Zyxel" for product "P-660hn-51 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660hn-51 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hn-51 Search vendor "Zyxel" for product "P-660hn-51" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hn-51 Firmware Search vendor "Zyxel" for product "P-660hn-51 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660hn-51 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hn-51 Search vendor "Zyxel" for product "P-660hn-51" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-t1 Firmware Search vendor "Zyxel" for product "P-660h-t1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660h-t1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-t1 Search vendor "Zyxel" for product "P-660h-t1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660h-t1 Firmware Search vendor "Zyxel" for product "P-660h-t1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660h-t1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660h-t1 Search vendor "Zyxel" for product "P-660h-t1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw D1 Firmware Search vendor "Zyxel" for product "P-660hw D1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660hw D1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw D1 Search vendor "Zyxel" for product "P-660hw D1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw D1 Firmware Search vendor "Zyxel" for product "P-660hw D1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660hw D1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw D1 Search vendor "Zyxel" for product "P-660hw D1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw D3 Firmware Search vendor "Zyxel" for product "P-660hw D3 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660hw D3 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw D3 Search vendor "Zyxel" for product "P-660hw D3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw D3 Firmware Search vendor "Zyxel" for product "P-660hw D3 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660hw D3 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw D3 Search vendor "Zyxel" for product "P-660hw D3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw T3 Firmware Search vendor "Zyxel" for product "P-660hw T3 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-660hw T3 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw T3 Search vendor "Zyxel" for product "P-660hw T3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-660hw T3 Firmware Search vendor "Zyxel" for product "P-660hw T3 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-660hw T3 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-660hw T3 Search vendor "Zyxel" for product "P-660hw T3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hnu-f1 Firmware Search vendor "Zyxel" for product "P-661hnu-f1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-661hnu-f1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hnu-f1 Search vendor "Zyxel" for product "P-661hnu-f1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hnu-f1 Firmware Search vendor "Zyxel" for product "P-661hnu-f1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-661hnu-f1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hnu-f1 Search vendor "Zyxel" for product "P-661hnu-f1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661h Firmware Search vendor "Zyxel" for product "P-661h Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-661h Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661h Search vendor "Zyxel" for product "P-661h" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661h Firmware Search vendor "Zyxel" for product "P-661h Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-661h Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661h Search vendor "Zyxel" for product "P-661h" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hw-d1 Firmware Search vendor "Zyxel" for product "P-661hw-d1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-661hw-d1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hw-d1 Search vendor "Zyxel" for product "P-661hw-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hw-d1 Firmware Search vendor "Zyxel" for product "P-661hw-d1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-661hw-d1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hw-d1 Search vendor "Zyxel" for product "P-661hw-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hnu-f3 Firmware Search vendor "Zyxel" for product "P-661hnu-f3 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-661hnu-f3 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hnu-f3 Search vendor "Zyxel" for product "P-661hnu-f3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-661hnu-f3 Firmware Search vendor "Zyxel" for product "P-661hnu-f3 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-661hnu-f3 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-661hnu-f3 Search vendor "Zyxel" for product "P-661hnu-f3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d3 Firmware Search vendor "Zyxel" for product "P-662hw-d3 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-662hw-d3 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d3 Search vendor "Zyxel" for product "P-662hw-d3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d3 Firmware Search vendor "Zyxel" for product "P-662hw-d3 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-662hw-d3 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d3 Search vendor "Zyxel" for product "P-662hw-d3" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d Firmware Search vendor "Zyxel" for product "P-662hw-d Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-662hw-d Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d Search vendor "Zyxel" for product "P-662hw-d" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d Firmware Search vendor "Zyxel" for product "P-662hw-d Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-662hw-d Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d Search vendor "Zyxel" for product "P-662hw-d" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d1 Firmware Search vendor "Zyxel" for product "P-662hw-d1 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-662hw-d1 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d1 Search vendor "Zyxel" for product "P-662hw-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662hw-d1 Firmware Search vendor "Zyxel" for product "P-662hw-d1 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-662hw-d1 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662hw-d1 Search vendor "Zyxel" for product "P-662hw-d1" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662h-61 Firmware Search vendor "Zyxel" for product "P-662h-61 Firmware" | >= 3.40\(agd.2\) <= 3.40\(ahq.3\) Search vendor "Zyxel" for product "P-662h-61 Firmware" and version " >= 3.40\(agd.2\) <= 3.40\(ahq.3\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662h-61 Search vendor "Zyxel" for product "P-662h-61" | - | - |
Safe
|
Zyxel Search vendor "Zyxel" | P-662h-61 Firmware Search vendor "Zyxel" for product "P-662h-61 Firmware" | 3.40\(pe9\) Search vendor "Zyxel" for product "P-662h-61 Firmware" and version "3.40\(pe9\)" | - |
Affected
| in | Zyxel Search vendor "Zyxel" | P-662h-61 Search vendor "Zyxel" for product "P-662h-61" | - | - |
Safe
|