Vulnerability Description
ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the router, if the password is known.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zyxel | Prestige | 642r |
References
- http://www.securityfocus.com/archive/1/203022
- http://www.securityfocus.com/archive/1/203592
- http://www.securityfocus.com/archive/1/204439Vendor Advisory
- http://www.securityfocus.com/archive/1/214971Vendor Advisory
- http://www.securityfocus.com/bid/3346Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7146
- http://www.securityfocus.com/archive/1/203022
- http://www.securityfocus.com/archive/1/203592
- http://www.securityfocus.com/archive/1/204439Vendor Advisory
- http://www.securityfocus.com/archive/1/214971Vendor Advisory
- http://www.securityfocus.com/bid/3346Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7146
FAQ
What is CVE-2001-1135?
CVE-2001-1135 is a vulnerability with a CVSS score of 7.5 (HIGH). ZyXEL Prestige 642R and 642R-I routers do not filter the routers' Telnet and FTP ports on the external WAN interface from inside access, allowing someone on an internal computer to reconfigure the rou...
How severe is CVE-2001-1135?
CVE-2001-1135 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2001-1135?
Check the references section above for vendor advisories and patch information. Affected products include: Zyxel Prestige.