Dreambox Web Interface URI Remote Denial of Service Vulnerability

Bugtraq ID:	30919
Class:	Boundary Condition Error
CVE:	CVE-2008-3936
Remote:	Yes
Local:	No
Published:	Aug 29 2008 12:00AM
Updated:	May 07 2015 05:24PM
Credit:	Marc Ruef
Vulnerable:	Dream Multimedia Dreambox DM500C
Not Vulnerable:

Dreambox Web Interface URI Remote Denial of Service Vulnerability

Dreambox is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to crash the affected device, denying service to legitimate users. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.

Dreambox DM500C is vulnerable; other models may also be affected.

Dreambox Web Interface URI Remote Denial of Service Vulnerability

An attacker can exploit this issue through a browser.

The following example HTTP GET request is available:

open|send GET http://www.example.com/aaa(...)
HTTP/1.0\n\n|sleep|close|pattern_not_exists HTTP/1.# ### *

Dreambox Web Interface URI Remote Denial of Service Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Dreambox Web Interface URI Remote Denial of Service Vulnerability

References:

• Vendor Homepage (Dream Media)
  
• [scip_Advisory 3807] Dreambox DM500 webserver long URL request denial of service (Marc Ruef )