What is the severity of CVE-2005-3725?

CVE-2005-3725 is considered a moderate severity vulnerability due to its potential for denial of service and remote access exploitation.

How do I fix CVE-2005-3725?

To mitigate CVE-2005-3725, avoid using the Zyxel P2000W with hardcoded DNS servers and instead configure a secure and trusted DNS server.

What devices are affected by CVE-2005-3725?

The affected device is the Zyxel Prestige 2000W Version 1 VoIP Wi-Fi Phone running firmware version WJ.00.10.

Can CVE-2005-3725 be exploited remotely?

Yes, CVE-2005-3725 can be exploited remotely if an attacker targets the hardcoded DNS servers used by the affected Zyxel phones.

What are the risks associated with CVE-2005-3725?

The risks associated with CVE-2005-3725 include potential denial of service attacks and the possibility of hijacking the affected VoIP devices.

Vulnerability/
CVE-2005-3725

medium

6.4

CWE

NVD-CWE-Other

21/11/2005

7/8/2024

CVE-2005-3725

First published: Mon Nov 21 2005(Updated: )

Zyxel P2000W Version 1 VOIP WIFI Phone Wj.00.10 uses hardcoded IP addresses for its DNS servers, which could allow remote attackers to cause a denial of service or hijack Zyxel phones by attacking or spoofing the hardcoded DNS servers. NOTE: it could be argued that this issue reflects an inherent limitation of DNS itself, so perhaps it should not be included in CVE.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Zyxel Prestige 2000w V.1voip Wi-fi Phone	=wj.00.10

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2005-3725?
CVE-2005-3725 is considered a moderate severity vulnerability due to its potential for denial of service and remote access exploitation.
How do I fix CVE-2005-3725?
To mitigate CVE-2005-3725, avoid using the Zyxel P2000W with hardcoded DNS servers and instead configure a secure and trusted DNS server.
What devices are affected by CVE-2005-3725?
The affected device is the Zyxel Prestige 2000W Version 1 VoIP Wi-Fi Phone running firmware version WJ.00.10.
Can CVE-2005-3725 be exploited remotely?
Yes, CVE-2005-3725 can be exploited remotely if an attacker targets the hardcoded DNS servers used by the affected Zyxel phones.
What are the risks associated with CVE-2005-3725?
The risks associated with CVE-2005-3725 include potential denial of service attacks and the possibility of hijacking the affected VoIP devices.

collector/nvd-historical
vendor/zyxel
product/prestige 2000w v.1voip wi-fi phone
canonical/zyxel prestige 2000w v.1voip wi-fi phone
collector/nvd-index
agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/last-modified-date
agent/tags
agent/first-publish-date
agent/description
agent/event
agent/source
version/zyxel prestige 2000w v.1voip wi-fi phone/wj.00.10

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.

Frequently Asked Questions

What is the severity of CVE-2005-3725?
CVE-2005-3725 is considered a moderate severity vulnerability due to its potential for denial of service and remote access exploitation.
How do I fix CVE-2005-3725?
To mitigate CVE-2005-3725, avoid using the Zyxel P2000W with hardcoded DNS servers and instead configure a secure and trusted DNS server.
What devices are affected by CVE-2005-3725?
The affected device is the Zyxel Prestige 2000W Version 1 VoIP Wi-Fi Phone running firmware version WJ.00.10.
Can CVE-2005-3725 be exploited remotely?
Yes, CVE-2005-3725 can be exploited remotely if an attacker targets the hardcoded DNS servers used by the affected Zyxel phones.
What are the risks associated with CVE-2005-3725?
The risks associated with CVE-2005-3725 include potential denial of service attacks and the possibility of hijacking the affected VoIP devices.