Denial of Service Vulnerability in ZyXEL SBG-3300 Security Gateway

Denial of Service Vulnerability in ZyXEL SBG-3300 Security Gateway

CVE-2014-7278 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The login page on the ZyXEL SBG-3300 Security Gateway with firmware 1.00(AADY.4)C0 and earlier allows remote attackers to cause a denial of service (persistent web-interface outage) via JavaScript code within unspecified "welcome message" form data that is improperly handled during use for the loginMsg variable's value, a different vulnerability than CVE-2014-7277.

Learn more about our Web App Pen Testing.