# Exploit Title: Zyxel P-660HW-T1 v3 Wireless Router - CSRF Vulnerabilities # Date: 05/28/2014 # Author: Mustafa ALTINKAYNAK # Vendor Homepage:http://www.zyxel.com/tr/tr/products_services/p_660hw_series.shtml?t=p # Category: Hardware/Wireless Router # Tested on: Zyxel P-660HW-T1 v3 Wireless Router # Patch/ Fix: Vendor has not provided any fix for this yet --------------------------- Technical Details --------------------------- This vulnerability was tested at the P-660HW-T1 devices. Admin panel is open you can run remote code destination. You can send the form below to prepare the target. Please offending. Being partners in crime. Disclosure Timeline --------------------------- 05/21/2014 Contacted Vendor 05/22/2014 Vendor Replied 04/22/2014 Vulnerability Explained (No reply received) 05/26/2014 I was told that's not open vulnerabilities. 05/28/2014 Full Disclosure Exploit Code --------------------------- Change Wifi (WPA2/PSK) password & SSID by CSRF ---------------------------------------------------------------------------------
----------- Mustafa ALTINKAYNAK twitter : @m_altinkaynak www.altinkaynak.biz