Microsoft Mn-500 Wireless Router

Full Version: Microsoft Mn-500 Wireless Router

GovernmentSecurity.org > The Archives > Exploit Articles

qcred11

Jun 22 2004, 02:49 PM

QUOTE

Overview:
A vulnerability has been found in the Microsoft MN-500 Wireless Router Web-Based
Administration.

Vendor:
Microsoft (http://www.microsoft.com)

Vulnerability/Exploit:
A user can deny access to the web-based administration by establishing 30 connections to
the web-based administration port (80). Until the connections are closed, the router
administrator cannot access the web-based administration.

Workaround:
None so far.

Date Discovered:
June 21, 2004

Severity:
Medium

Credit:
Paul Kurczaba
Kurczaba Associates
http://www.kurczaba.com/
Visit http://www.kurczaba.com for mailing lists in Security, Encryption, Wireless,
MS-Security, and Production Security.

Source: http://www.securitytracker.com/alerts/2004/Jun/1010550.html

xlulux

Jun 22 2004, 04:12 PM

kill the DOS-ers and DDoS-ers too

its an intresting vuln, but why is it useful? and if theres no fix for it yet, why make it public?

BeNiNuK

Jun 22 2004, 11:04 PM

so n00bs can ddos people ? lol and crash routers with 10000's of connections ?

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.