CVE-2007-4319

Name of the Vulnerable Software and Affected Versions ZyNOS firmware version 3.62(WK.6)

Description The management interface in the firmware allows remote authenticated administrators to cause a denial of service, specifically an infinite reboot loop, via invalid configuration data. This issue may not cross privilege boundaries and could be resultant from a Cross-Site Request Forgery (CSRF) attack.

Recommendations For ZyNOS firmware version 3.62(WK.6), as a temporary workaround, consider restricting access to the management interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.