Microsoft MN-500 Wireless Router Web-Based Administration DoS

2004-06-23T00:00:00
ID SECURITYVULNS:DOC:6386
Type securityvulns
Reporter Securityvulns
Modified 2004-06-23T00:00:00

Description

Microsoft MN-500 Wireless Router Web-Based Administration DoS

http://www.kurczaba.com/securityadvisories/0406213.htm

Vulnerability ID Number: 0406213

Overview: A vulnerability has been found in the Microsoft MN-500 Wireless Router Web-Based Administration.

Vendor: Microsoft (http://www.microsoft.com)

Vulnerability/Exploit: A user can deny access to the web-based administration by establishing 30 connections to the web-based administration port (80). Until the connections are closed, the router administrator cannot access the web-based administration.

Workaround: None so far.

Date Discovered: June 21, 2004

Severity: Medium

Credit: Paul Kurczaba Kurczaba Associates http://www.kurczaba.com/ Visit http://www.kurczaba.com for mailing lists in Security, Encryption, Wireless, MS-Security, and Production Security.