ZLD4.73 & ZLD5.36 patch 2 Official Version Released to address Buffer Overflow Issues
All Replies
-
But this is older model - only USG 20, no VPN in name. Is it a same model?
0 -
The 20 is no longer supported. They quitly replaced it with the 20-VPN which is a complete different device. We are also still have some of these boxes because in the time the 40 or 60 where to expensive. Looks like in term of support we got the short end of the stick.
0 -
That would be good news.
Can you please confirm from Zyxel, that the old model USG 20 is not affected?
0 -
You are right, i just checked.
0 -
A linkedin post (see below) says it was possibile to get root access via these exploits.
If this is the case, it is easy to steal the config file and decript the passwords in there (there is a tool on the net to do that), including admin one.I strongly suggest to change all passwords.
0 -
https://www.linkedin.com/posts/425a_zyxel-zyxel-vulnerabilitymanagement-ugcPost-7067040279790256128-COHr?utm_source=share&utm_medium=member_android
0 -
That post is a bit misleading. It's referencing the CVE from April.
0 -
Greetings…..would someone be able to advice me on which firmware to use for my zywall 110 to adress these vpn issues? is the version 4.73 the one that fixes this even for my older 110? thanks a lot for any help!
0 -
Yes you can get the firmware here
0
Freshman Member
Master Member
Guru Member
Categories
- All Categories
- 415 Beta Program
- 2.4K Nebula
- 144 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.6K Security
- 237 USG FLEX H Series
- 267 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1.1K Wireless
- 40 Wireless Ideas
- 6.3K Consumer Product
- 247 Service & License
- 384 News and Release
- 83 Security Advisories
- 29 Education Center
- 10 [Campaign] Zyxel Network Detective
- 3.2K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight
