CVE-2007-4318

ZyNOS 3.62(WK.6) - Authenticated Stored Cross-Site Scripting via sysSystemName Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-4318. PoCs published by Henri Lindberg.

AI-analyzed exploit summary This HTML-based PoC exploits a CSRF vulnerability in ZyXEL ZyWALL 2's management interface to inject malicious scripts and perform DoS attacks by manipulating form inputs. It demonstrates how an attacker can force a logged-in admin to submit a crafted POST request.

Description

Cross-site scripting (XSS) vulnerability in Forms/General_1 in the management interface in ZyNOS firmware 3.62(WK.6) on the Zyxel Zywall 2 device allows remote authenticated administrators to inject arbitrary web script or HTML via the sysSystemName parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Henri Lindberg · htmlremotehardware

https://www.exploit-db.com/exploits/30485

View Code ZIP pw:eip

This HTML-based PoC exploits a CSRF vulnerability in ZyXEL ZyWALL 2's management interface to inject malicious scripts and perform DoS attacks by manipulating form inputs. It demonstrates how an attacker can force a logged-in admin to submit a crafted POST request.

Classification

Working Poc 90%

Attack Type

Xss | Dos

Complexity

Trivial

Reliability

Reliable

Target: ZyXEL ZyWALL 2 with firmware V3.62(WK.6)

Auth required

Prerequisites: Victim must be authenticated to the ZyWALL management interface · Attacker must trick victim into visiting the malicious HTML page

MITRE ATT&CK