[12010] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

DoS Exploit in Eicon Diehl LAN ISDN Modem

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Bj=F6rn_Stickler?=)
Mon Sep 27 14:50:15 1999

Mime-Version: 1.0
Content-Type: text/plain; charset="iso-8859-1"
Content-Transfer-Encoding: 8bit
Message-Id:  <000b01bf080d$5cb499c0$0201a8c0@intex>
Date:         Sun, 26 Sep 1999 12:53:26 +0200
Reply-To: =?iso-8859-1?Q?Bj=F6rn_Stickler?= <courier@ONLINE.DE>
From: =?iso-8859-1?Q?Bj=F6rn_Stickler?= <courier@ONLINE.DE>
X-To:         Bugtraq <bugtraq@securityfocus.com>
To: BUGTRAQ@SECURITYFOCUS.COM

i recently found a security bug in the diva lan isdn modem that shuts down
the modem (fault led on).
all you have to do is type the following location in your browser:
http://diva/login.htm?password=0123456789012345678901234567890123456789
where diva is the name of your modem or the ip-address.
after that, the modem is locked until you do a hard reset.
i think it4s a buffer overflow of the password length which probably
overwrites the eip adress.
regards
Bjvrn Stickler

PS: i informed Eicon Diehl about that bug already


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[12010] in bugtraq

DoS Exploit in Eicon Diehl LAN ISDN Modem

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Bj=F6rn_Stickler?=)Mon Sep 27 14:50:15 1999

daemon@ATHENA.MIT.EDU (=?iso-8859-1?Q?Bj=F6rn_Stickler?=)
Mon Sep 27 14:50:15 1999