CVE-2006-2562

ZyXEL P-335WT Router - Unauthenticated Access Bypass via UPnP InternalClient Parameter

Title source: llm

Description

ZyXEL P-335WT router allows remote attackers to bypass access restrictions and conduct unauthorized operations via a UPnP request with a modified InternalClient parameter, which is not validated, as demonstrated by using AddPortMapping to forward arbitrary traffic.

References (5)

Core 5

Core References

URL Repurposed x_refsource_misc

http://www.securityview.org/how-does-the-upnp-flaw-works.html

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/26710

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/20184

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/1910

URL Repurposed x_refsource_misc

http://www.securityview.org/dutch-student-finds-a-bug-in-upnp.html

Scores

EPSS 0.0045

EPSS Percentile 63.7%

Details

CWE

CWE-264

Status published

Products (1)

zyxel/p-335wt_router

Published May 24, 2006

Tracked Since Feb 18, 2026