Netcomm NB1300 Modem/Router Remote Denial of Service Vulnerability

Bugtraq ID:	12901
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	Yes
Local:	No
Published:	Mar 25 2005 12:00AM
Updated:	Mar 25 2005 12:00AM
Credit:	Discovery is credited to Chris Rock <[email protected]>.
Vulnerable:	NetComm NB1300 4.4.1 NetComm NB1300
Not Vulnerable:

Netcomm NB1300 Modem/Router Remote Denial of Service Vulnerability

Netcomm NB1300 Modem/Router is reported prone to a remote denial of service vulnerability.

An attacker can exploit this condition by sending a large amount of ping requests to the device.

A successful attack can deny service to legitimate users.

Netcomm NB1300 Modem/Router Remote Denial of Service Vulnerability

An exploit is not required.

The following proof of concept is available:

Send four consecutive requests of
ping -l 65500 -w 0 -t <IP of DSL Modem>

Netcomm NB1300 Modem/Router Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

Netcomm NB1300 Modem/Router Remote Denial of Service Vulnerability

References:

• NetComm NB1300 Product Homepage (NetComm)
  
• Netcomm 1300NB DSL Modem Denial of Service (Chris Rock )