Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
BID:52106
Info
Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
| Bugtraq ID: | 52106 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2012-4999 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 21 2012 12:00AM |
| Updated: | Sep 21 2012 06:20PM |
| Credit: | demonalex |
| Vulnerable: |
Mercury MR804 0 |
| Not Vulnerable: | |
Discussion
Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
Mercury MR804 router is prone to multiple denial-of-service vulnerabilities.
Remote attackers can exploit these issues to cause the device to crash, denying service to legitimate users.
Mercury MR804 running version 3.8.1 Build 101220 is vulnerable.
Mercury MR804 router is prone to multiple denial-of-service vulnerabilities.
Remote attackers can exploit these issues to cause the device to crash, denying service to legitimate users.
Mercury MR804 running version 3.8.1 Build 101220 is vulnerable.
Exploit / POC
Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
Attackers can use readily available utilities to launch attacks.
The following exploit is available:
Attackers can use readily available utilities to launch attacks.
The following exploit is available:
Solution / Fix
Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Mercury MR804 Router Multiple HTTP Header Fields Denial Of Service Vulnerabilities
References:
References:
- MR804 Homepage (Mercury )
- Mercurycom MR804 Router - Multiple HTTP Header Fields Denial Of Service Vulner (demonalex)