Full title: Zyxel / Eir D1000 DSL Modem NewNTPServer Command Injection Over TR-064 Exploit 
Category: remote exploits
Platform: hardware
Broadband DSL modems manufactured by Zyxel and distributed by some European ISPs are vulnerable to a command injection vulnerability when setting the 'NewNTPServer' value using the TR-64 SOAP-based configuration protocol. In the tested case, no authentication is required to set this value on affected DSL modems. This exploit was originally tested on firmware versions up to 2.00(AADU.5)_20150909.

# 0day.today @ http://0day.today/