ID
VAR-201006-0501
TITLE
Motorola SB5101 Haxorware Firmware Denial of Service Vulnerability
Trust: 0.6
DESCRIPTION
The Motorola SB5101 is a cable modem. Motorola SB5101 Hax0rware has multiple security vulnerabilities that allow remote attackers to perform denial of service attacks on devices. - Unverified attackers can send multiple log reset requests to the eventlog.cgi script to restart the device and cause a denial of service attack. - The unauthenticated attacker sends a GET request with more than 1 byte but no correct request line to the device 80 port, such as [ GET /somepath/file.cgi ], the http daemon crashes. Motorola SB5101 Haxorware Firmware is prone to multiple denial-of-service vulnerabilities. An attacker can exploit these issues to cause the application to crash, resulting in a denial-of-service condition. Haxorware 1.1 R30, 1.1 R32 and 1.1 R39 are vulnerable; other versions may also be affected
Trust: 0.81
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | no | model: | - | scope: | - | version: | - | Trust: 0.6 |
| vendor: | surfboard | model: | hacker haxorware r39 | scope: | eq | version: | 1.1 | Trust: 0.3 |
| vendor: | surfboard | model: | hacker haxorware r32 | scope: | eq | version: | 1.1 | Trust: 0.3 |
| vendor: | surfboard | model: | hacker haxorware r30 | scope: | eq | version: | 1.1 | Trust: 0.3 |
THREAT TYPE
network
Trust: 0.3
TYPE
Input Validation Error
Trust: 0.3
EXTERNAL IDS
| db: | BID | id: | 40635 | Trust: 0.9 |
| db: | CNVD | id: | CNVD-2010-1078 | Trust: 0.6 |
REFERENCES
| url: | http://www.securityfocus.com/bid/40635 | Trust: 0.6 |
| url: | http://www.sbhacker.net/forum/ | Trust: 0.3 |
CREDITS
Dillon Beresford
Trust: 0.3
SOURCES
| db: | CNVD | id: | CNVD-2010-1078 |
| db: | BID | id: | 40635 |
LAST UPDATE DATE
2022-05-17T01:41:43.371000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2010-1078 | date: | 2010-06-09T00:00:00 |
| db: | BID | id: | 40635 | date: | 2010-06-08T00:00:00 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2010-1078 | date: | 2010-06-09T00:00:00 |
| db: | BID | id: | 40635 | date: | 2010-06-08T00:00:00 |