[原文]Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication.
ZyXEL P2000W UDP 9090 Remote Information Disclosure
Remote / Network Access
Loss of Confidentiality
Zyxel P2000W VOIP WIFI phones contain a flaw that may lead to unauthorized information disclosure. The issue is triggered when an attacker connects to an undocumented UDP port 9090, which will disclose the phones software version and MAC address information resulting in a loss of confidentiality.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.
Shawn Merdinger <email@example.com> is credited with the discovery of this vulnerability.
ZyXEL Prestige 2000W v.2 VoIP Wi-Fi Phone
ZyXEL Prestige 2000W v.1 VoIP Wi-Fi Phone
The Zyxel P2000W VOIP WIFI Phone is prone to an information disclosure vulnerability.
Sensitive information may be disclosed to attackers, and could be useful in further attacks. Informataion obtained may aid an attacker to perform denial of service attacks.
Both version 1, and 2 of these phones are vulnerable to this issue. Due to code reuse, other devices and versions may also be affected.
An exploit is not required.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: firstname.lastname@example.org <mailto:email@example.com>.