CVE-2005-3724

Zyxel P2000W Version 1 VOIP WIFI Phone - Unauthenticated Sensitive Information Exposure via UDP Port 9090

Title source: llm
STIX 2.1

Description

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 allows remote attackers to obtain sensitive information and possibly cause a denial of service via a direct connection to UDP port 9090, which is undocumented and does not require authentication.

References (5)

Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/21292
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15478
Vendor Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2476
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/23092
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=113217443126673&w=2

Scores

EPSS 0.0166
EPSS Percentile 82.3%

Details

CWE
CWE-200
Status published
Products (2)
zyxel/p2000w_version_1_voip_wifi_phone wj.00.10
zyxel/prestige_2000w_v.1voip_wi-fi_phone wj.00.10
Published Nov 21, 2005
Tracked Since Feb 18, 2026