Zyxel USG/UAG/ATP/VPN/NXC External DNS Requests
Posted on 30 August 2019
Zyxel USG/UAG/ATP/VPN/NXC series suffer from an issue where a DNS request can be made by an unauthenticated attacker to either spam a DNS service of a third party with requests that have a spoofed origin or probe whether domain names are present on the internal network behind the firewall.