Zonet Wireless Router NAT Function Modifies Inbound IP Source Addresses
|
|
SecurityTracker Alert ID: 1009967
|
|
CVE Reference: GENERIC-MAP-NOMATCH
(Links to External Site)
|
Updated: Apr 30 2004
|
Original Entry Date: Apr 28 2004
|
Impact: Modification of system information
|
Version(s): Model ZSR1104WE; Firmware 2.41
|
Description: A vulnerability was reported in the Zonet Wireless Router model ZSR1104WE. The device modifies the source addresses of inbound IP packets in certain cases.
SecurityFocus reported that the device's network address translation function modifies the source address of inbound packets to be
the address of the device, making it impossible to perform effective access controls within the internal network.
Jason Wachtel
<jwachtel@homelogic.com> is credited with reporting this flaw.
|
Impact: The router modifies the source address of inbound NAT'd packets.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.zonetusa.com/zsr1104we03.htm (Links to External Site)
|
Cause: State error
|
|
Message History:
None.
|
Source Message Contents
|
Date: Wed, 28 Apr 2004 00:38:52 -0400
Subject: Zonet ZSR1104WE 2.41
|
SecurityFocus posted a report credited to Jason Wachtel <jwachtel@homelogic.com> of a
vulnerability in the Zonet Wireless Router model ZSR1104WE. The device's network address
translation function reportedly modifies the source address of inbound packets to be the
address of the device, making it impossible to perform effective access controls within
the internal network.
http://www.zonetusa.com/zsr1104we03.htm
|
|
