CVE-2005-3725

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 - Denial of Service via Hardcoded DNS Server Spoofing

Title source: llm
STIX 2.1

Description

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 uses hardcoded IP addresses for its DNS servers, which could allow remote attackers to cause a denial of service or hijack Zyxel phones by attacking or spoofing the hardcoded DNS servers. NOTE: it could be argued that this issue reflects an inherent limitation of DNS itself, so perhaps it should not be included in CVE.

References (2)

Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15478
Mailing List mailing-list x_refsource_fulldisc
http://marc.info/?l=full-disclosure&m=113217443126673&w=2

Scores

EPSS 0.0064
EPSS Percentile 70.7%

Details

Status published
Products (1)
zyxel/prestige_2000w_v.1voip_wi-fi_phone wj.00.10
Published Nov 21, 2005
Tracked Since Feb 18, 2026