Toni Koivunen

**Name of the Vulnerable Software and Affected Versions** Zyxel NBG-418N v2 versions prior to V1.00(AARP.14)C0 **Description** A buffer overflow vulnerability could allow a remote unauthenticated attacker to cause DoS conditions by sending crafted packets if Telnet is enabled on a vulnerable device. The issue is related to the implementation of the Telnet network protocol in the Zyxel NBG-418N v2 firmware. **Recommendations** For Zyxel NBG-418N v2 versions prior to V1.00(AARP.14)C0, update to a version that includes the fix for this issue. As a temporary workaround, consider disabling Telnet on the device until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Zyxel NBG-418N v2 firmware versions prior to V1.00(AARP.14)C0 **Description** A cross-site scripting (XSS) issue is present in the web management interface, related to insufficient protection of the web page structure when handling parameters. This could allow a remote attacker with administrator privileges to store malicious scripts, resulting in denial-of-service (DoS) conditions on an affected device. **Recommendations** For Zyxel NBG-418N v2 firmware versions prior to V1.00(AARP.14)C0, update to version V1.00(AARP.14)C0 or later to resolve the issue. As a temporary workaround, consider restricting access to the web management interface to minimize the risk of exploitation. Avoid using vulnerable parameters in the web management interface until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** Zyxel NBG-418N v2 versions prior to V1.00(AARP.14)C0 **Description** A buffer overflow vulnerability could allow a remote authenticated attacker with administrator privileges to cause denial-of-service (DoS) conditions by executing crafted CLI commands on a vulnerable device. The vulnerability is related to the lack of input size validation, which can be exploited by a remote attacker to disrupt the service. **Recommendations** For Zyxel NBG-418N v2 versions prior to V1.00(AARP.14)C0, update the firmware to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the CLI interface to minimize the risk of exploitation. Avoid executing crafted CLI commands on the vulnerable device until the issue is resolved. At the moment, there is no information about additional mitigation measures.

**Name of the Vulnerable Software and Affected Versions** Zyxel NBG-418N v2 firmware versions prior to V1.00(AARP.14)C0 **Description** A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware could allow a remote authenticated attacker to cause denial-of-service (DoS) conditions on an affected device. The vulnerability is related to the use of uncontrolled format strings when processing binary files. Exploitation of the vulnerability may allow an attacker to cause a denial-of-service by sending specially crafted packets. **Recommendations** For Zyxel NBG-418N v2 firmware versions prior to V1.00(AARP.14)C0, update to a version that includes the fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: phpMyAdmin versions prior to 2.8.0.3 Description: The issue concerns multiple cross-site scripting (XSS) vulnerabilities. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML via unknown vectors in unspecified scripts in the themes directory. Recommendations: For versions prior to 2.8.0.3, update to version 2.8.0.3 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** phpAdsNew versions prior to 2.0.6 phpPgAds versions prior to 2.0.6 **Description** The issue allows remote attackers to inject arbitrary HTML headers, potentially leading to security breaches. This is achieved via the adclick.php endpoint and possibly other unspecified vectors. **Recommendations** For phpAdsNew versions prior to 2.0.6, update to a version later than 2.0.6. For phpPgAds versions prior to 2.0.6, update to a version later than 2.0.6. As a temporary workaround, consider restricting access to the adclick.php endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** phpAdsNew and phpPgAds version 2.0.6 and earlier **Description** The issue allows remote attackers to obtain sensitive information, including the application installation path, by making direct requests to certain files. This is possible due to the exposure of sensitive data when display errors is enabled. The affected files include "create.php", "lib-updates.inc.php", "lib-targetstats.inc.php", "lib-size.inc.php", "lib-misc-stats.inc.php", "lib-hourly-hosts.inc.php", "lib-hourly.inc.php", "lib-history.inc.php", and "graph-daily.php". **Recommendations** For phpAdsNew and phpPgAds version 2.0.6 and earlier, consider disabling the display of errors to prevent the exposure of sensitive information. Restrict access to the mentioned files to minimize the risk of exploitation. Avoid using the affected files until a patch or fix is available. At the moment, there is no information about a newer version that contains a fix for this issue.

**Name of the Vulnerable Software and Affected Versions** phpMyAdmin versions 2.7.0-beta1 and earlier **Description** The issue allows remote attackers to obtain the full path of the server via direct requests to multiple scripts in the libraries directory. **Recommendations** For phpMyAdmin versions 2.7.0-beta1 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.