Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 DOS:NETDEV:LINKSYS-GOZILA-DOS2

Severity

 Medium

Recommended

 No

Category

 DOS

Keywords

 linksys dos gozila

Release Date

 2004/06/09

Update Number

 1213

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

DOS: LinkSys Cable/DSL Router Gozila sysPasswd Parameter DoS


This signature detects attempts to exploit a known vulnerability in a LinkSys Cable/DSL router. Attackers can submit an overly long sysPasswd parameter within a malicious HTTP request to crash a LinkSys Cable/DSL router.

Extended Description

Multiple Linksys routers are reported vulnerable to a denial of service condition. The issues presents themselves due to a lack of sufficient sanitization performed on parameters that are passed to the Gozila.CGI script. A remote attacker may potentially exploit these conditions to deny service to an affected appliance. It is reported that the device must be reset to the original factory defaults in order to restore normal device functionality.

Affected Products

  • Linksys BEFSR41 v3
  • Linksys BEFSR81 v2
  • Linksys BEFSR81 v3
  • Linksys BEFSX41 1.42.7
  • Linksys BEFSX41 1.43.0
  • Linksys BEFSX41 1.43.3
  • Linksys BEFSX41 1.43.4
  • Linksys BEFSX41 1.44.0
  • Linksys BEFSX41 1.44.3
  • Linksys BEFSX41 1.45.3
  • Linksys BEFW11S4 1.4.2 .7
  • Linksys BEFW11S4 1.4.3
  • Linksys BEFW11S4 1.43.3
  • Linksys BEFW11S4 1.44.0
  • Linksys BEFW11S4 v3
  • Linksys BEFW11S4 v4
  • Linksys EtherFast BEFSR11 Router 1.40.2
  • Linksys EtherFast BEFSR11 Router 1.41.0
  • Linksys EtherFast BEFSR11 Router 1.42.3
  • Linksys EtherFast BEFSR11 Router 1.42.7
  • Linksys EtherFast BEFSR11 Router 1.43.0
  • Linksys EtherFast BEFSR11 Router 1.43.3
  • Linksys EtherFast BEFSR11 Router 1.44.0
  • Linksys EtherFast BEFSR41 Router 1.35.0
  • Linksys EtherFast BEFSR41 Router 1.36.0
  • Linksys EtherFast BEFSR41 Router 1.37.0
  • Linksys EtherFast BEFSR41 Router 1.38.0
  • Linksys EtherFast BEFSR41 Router 1.39.0
  • Linksys EtherFast BEFSR41 Router 1.40.2
  • Linksys EtherFast BEFSR41 Router 1.41.0
  • Linksys EtherFast BEFSR41 Router 1.42.3
  • Linksys EtherFast BEFSR41 Router 1.42.7
  • Linksys EtherFast BEFSR41 Router 1.43.0
  • Linksys EtherFast BEFSR41 Router 1.43.3
  • Linksys EtherFast BEFSR41 Router 1.44.0
  • Linksys EtherFast BEFSRU31 Router 1.40.2
  • Linksys EtherFast BEFSRU31 Router 1.41.0
  • Linksys EtherFast BEFSRU31 Router 1.42.3
  • Linksys EtherFast BEFSRU31 Router 1.42.7
  • Linksys EtherFast BEFSRU31 Router 1.43.0
  • Linksys EtherFast BEFSRU31 Router 1.43.3
  • Linksys EtherFast BEFSRU31 Router 1.44.0

References

  • BugTraq: 10453
  • URL: http://www.securityfocus.com/archive/1/365039
  • URL: http://www.linksys.com/

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out