ZyXEL Wireless N300 NetUSB Router NBG-419N running firmware version 1.00(BFQ.6)C0, and possibly earlier versions, is susceptible to multiple vulnerabilities. Other device models that use similar firmware may also be vulnerable.
ZyXEL Wireless N300 NetUSB Router NBG-419N running firmware version 1.00(BFQ.6)C0, and possibly earlier versions, has been reported to contain multiple vulnerabilities.
CWE-425: Direct Request - CVE-2014-0353
A remote unauthenticated attacker on the local area network may be able to inject arbitrary commands or run arbitrary code.
We are currently unaware of a practical solution to this problem. Please consider the following workarounds.
Thanks to the reporter who wishes to remain anonymous for reporting this vulnerability.
This document was written by Jared Allar.