Look Ma, No Content
Feel free to donate
Chris @ MyITforum
Subscribe in a reader
Subscribe to Chris Mosby at myITforum.com by Email
D-Link DI-524 Denial of Service Vulnerabilities Secunia Advisory:SA29366 Release Date:2008-03-25 Critical:Less critical Impact:DoS Where:From local network Solution Status:Unpatched OS:D-Link DI-524 CVE reference:CVE-2008-1266 (Secunia mirror)Description:laurent has reported two vulnerabilities in D-Link DI-524, which can be exploited by malicious people to cause a DoS (Denial of Service).1) An error in the processing of login requests sent to the web interface can be exploited to trigger a crash via an overly long username.1) An error in the processing of HTTP headers can be exploited to crash the router's web server via an overly long HTTP header without a value.Solution:Restrict access to trusted users only.Provided and/or discovered by:laurentOriginal Advisory:http://www.gnucitizen.org/projects/router-hacking-challenge/
D-Link DI-524 Denial of Service Vulnerabilities
Secunia Advisory:SA29366
Release Date:2008-03-25
Critical:Less critical
Impact:DoS
Where:From local network
Solution Status:Unpatched
OS:D-Link DI-524
CVE reference:CVE-2008-1266 (Secunia mirror)
Source: D-Link DI-524 Denial of Service Vulnerabilities - Advisories - Secunia
No Comments