Please contact your local service representatives if you require further information or assistance. Note this mitigation is only applicable to VDSL and LTE models.įor more information and technical details regarding the vulnerabilities please see below references: Ethernet CPE EMG2306 EMG2926 EMG3425 Where to download patch firmware: Username: T3user Password: UserDownload900 Please contact your sales representatives or Zyxel support engineering team ( ) if you require further information or assistance. Zyxel CPE is reconfigured so that it does not act as the DNS server for LAN side DHCP clients by issuing the DNS servers as “obtained from ISP” or DNS static IPs.For ISP customers, ISP’s DNS server filters all DNS responses to check for the malicious code It’s our highest priority, and it’s what drives us to deliver the timely, useful advice on emerging vulnerabilities that you’ll find in this Security Advisories page.The following short-term mitigations could be put in place to remove or reduce the threat: Initial release *As P660HN-T1A router has been end-of-life since 2016, please contact your local Zyxel support team to get the latest firmware file.What should I do now to protect against the vulnerabilities? Thanks to Asher Davila, a researcher at Palo Alto Networks. If you’ve found a vulnerability, we want to work with you to fix it -contact and we’ll get right back to you. Please contact your local service rep for further information or assistance.
If you obtained your Zyxel product through an Internet service provider, please contact that provider for support.
We urge all users who have not done so already to install the firmware to ensure optimal protection*. It seeks to leverage the outdated CVE-2017-18368 vulnerability to gain access to devices and recruit them into botnets in order to attack gaming servers.Ī thorough investigation has confirmed that P660HN-T1A devices running their latest firmware, version 3.40(BYF.11), are immune to the new Gafgyt variant. We have made available a patch for this vulnerability in firmware versions 3.1.0.4 and above. Zyxel P660HN-T1A devices running their latest firmware, version 3.40(BYF.11), are immune to the latest variant of Gafgyt malware.Ī newly discovered variant of Gafgyt may attempt to infect IoT devices of multiple brands, including Zyxel’s P660HN-T1A router. DNSmasq Network service (CVE-2017-14491) We have evaluated the impact of this vulnerability on our devices, and have concluded that the Transport LR54 is the only Digi device effected.
0 kommentar(er)
