Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability

Bugtraq ID:	69809
Class:	Failure to Handle Exceptional Conditions
CVE:	CVE-2014-6435
Remote:	Yes
Local:	No
Published:	Sep 15 2014 12:00AM
Updated:	Sep 23 2014 12:01AM
Credit:	Federick Joe P Fajardo
Vulnerable:
Not Vulnerable:

Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability

Multiple Aztech routers are prone to a denial-of-service vulnerability.

Attackers may exploit this issue to cause an affected device to crash, resulting in a denial-of-service condition.

Aztech DSL5018EN, DSL705E and DSL705EU are vulnerable.

Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability

Attackers can exploit this issue with readily available tools.

The following exploit code is available:

• /data/vulnerabilities/exploits/69809.pl

Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability

Solution:
Currently, we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Multiple Aztech Routers '/cgi-bin/AZ_Retrain.cgi' Denial of Service Vulnerability

References:

• Vendor Homepage (Aztech)