Zyxel DX3301-T0 Uncontrolled Resource Consumption Vulnerability Allowing Slowloris-Style Denial-of-Service

A denial-of-service vulnerability has been identified in the web server of the Zyxel DX3301-T0 router, running firmware versions through 5.50(ABVY.6.3)C0. This vulnerability allows an attacker to execute Slowloris-style attacks, which can temporarily disrupt legitimate HTTP requests and partially interfere with the web management interface. Other networking services remain unaffected.

Impact

Exploitation of this vulnerability can lead to a Slowloris-style denial-of-service condition, temporarily blocking legitimate HTTP requests and causing partial disruption of the web management interface, while leaving other networking services unaffected.

Remediation

Users can upgrade to version 5.50(ABVY.6.4)C0 to address this vulnerability. For devices purchased through an ISP, contact the ISP's support team. For other users, reach out to the local Zyxel support team or visit Zyxel's Community for assistance.