A null pointer dereference vulnerability in the Wake-on-LAN CGI program of the Zyxel VMG3625-T50B firmware version through 5.50(ABPM.9.6)C0 and the Zyxel WX3100-T0 firmware versions through 5.50(ABVL.4.8)C0 could allow an authenticated attacker with administrator privileges to trigger a denial-of-service (DoS) condition by sending a crafted HTTP request.
| Vendor | Product | Versions |
|---|---|---|
| zyxel | ee5301-00_firmware | < 5.63\(acld.2.1\)c0, < 5.63\(acmu.2.1\)c0, < 5.17\(abyo.7.1\)c0, < 5.17\(abyl.10.1\)c0, < 5.17\(abyl.10.1\)c0, < 5.50\(abvy.7.1\)c0, < 5.50\(abvy.7.1\)c0, < 5.50\(abvy.7.1\)c0, < 5.19\(acjq.4.1\)c0, < 5.50\(abpm.9.7\)c0, < 5.50\(abpm.9.7\)c0, < 5.50\(acdi.2.3\)c0, < 5.50\(abvy.7.1\)c0, < 5.50\(abvy.7.1\)c0, < 5.50\(abvy.7.1\)c0, < 5.44\(achr.5.1\)c0, < 5.44\(achr.5.1\)c0, < 5.17\(abup.15.2\)c0, < 5.17\(abup.15.2\)c0, < 5.70\(acif.2.1\)c0, < 5.17\(abyo.7.1\)c0, < 5.17\(abqx.11.1\)c0, < 5.70\(aceg.5.3\)c0, < 5.70\(acdz.5.1\)c0, < 5.70\(acdz.5.1\)c0, < 5.18\(achn.3.1\)c0, < 5.18\(acak.1.6\)c0, < 5.18\(accl.2\)c0, < 5.61\(ackk.1.2\)c0, < 5.50\(abpm.9.7\)c0, < 5.17\(abqa.3.2\)c0, < 5.17\(abqa.3.2\)c0, < 5.17\(abpc.7.1\)c0, < 5.63\(acmt.2.1\)c0, < 5.63\(acoj.2.1\)c0, < 5.42\(acbf.4.1\)c0, < 5.42\(acbf.4.1\)c0, < 5.42\(acbf.4.1\)c0, < 5.42\(abyy.4.1\)c0, < 5.44\(achk.3\)c0, < 5.44\(acjb.1.5\)c0, < 5.44\(ackb.0.6\)c0, < 1.30\(acgn.0\)c0, < 5.50\(abpm.9.7\)c0, < 5.70\(acka.1.1\)c0, < 5.50\(abvl.4.9\)c0, < 5.17\(abve.2.10\)c0, < 5.70\(aceb.5.1\)c0, < 5.18\(acgj.0.5\)c0 |
