Thursday, June 12, 2008 10:21 AM
cmosby
Linksys WRH54G Denial of Service Vulnerability - Secunia
Linksys WRH54G Denial of Service Vulnerability
Secunia Advisory:
SA30562
Release Date:
2008-06-10
Last Update:
2008-06-12
Critical:
Less critical
Impact:
DoS
Where:
From local network
Solution Status:
Vendor Patch
OS:
Linksys WRH54G
CVE reference:
CVE-2008-2636 (Secunia mirror)
Description:
A vulnerability has been reported in Linksys WRH54G, which can be exploited by malicious people to cause a DoS (Denial of Service).
The vulnerability is caused due to an error when processing HTTP requests. This can be exploited to disable the HTTP service by sending a specially crafted HTTP request to an affected device.
The vulnerability is reported in firmware version 1.01.03. Prior versions may also be affected.
Solution:
Update to firmware version 1.01.04.
Provided and/or discovered by:
dubingyao
Changelog:
2008-06-12: Added CVE reference.
Filed under: Patch Management, Internet Applications, Security, Hardware Vulnerabilities