Zyxel Unauthenticated LAN Remote...

- AV AC AU C I A
发布: 2023-03-22
修订: 2024-12-11

This Metasploit module exploits a buffer overflow in the zhttpd binary (/bin/zhttpd). It is present on more than 40 Zyxel routers and CPE devices. The code execution vulnerability can only be exploited by an attacker if the zhttp webserver is reachable. No authentication is required. After exploitation, an attacker will be able to execute any command as root, including downloading and executing a binary from another host.

0%
当前有1条漏洞利用/PoC
当前有0条受影响产品信息