Thomson TCM315 Cable Modem HTTP Request DoS

2003-11-25T04:06:54
ID OSVDB:2861
Type osvdb
Reporter OSVDB
Modified 2003-11-25T04:06:54

Description

Vulnerability Description

Thomson Cable Modems contain a flaw that may allow a malicious user to remotely crash the device. The issue is triggered when an attacker sends an overly long HTTP request to the administrative web interface. This request may cause loss of the HTTP service or entire modem due to system crash.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Filter all traffic to the cable modem's HTTP interface.

Short Description

Thomson Cable Modems contain a flaw that may allow a malicious user to remotely crash the device. The issue is triggered when an attacker sends an overly long HTTP request to the administrative web interface. This request may cause loss of the HTTP service or entire modem due to system crash.

Manual Testing Notes

http://www.victim.com/AAA...[x100]...AAA

References:

Secunia Advisory ID:10286 ISS X-Force ID: 13815 Bugtraq ID: 9091